Share via

how do you establish a root of trust in Windows Server?

Michael Minette 0 Reputation points
2023-10-19T21:31:30.19+00:00

Members of the Server's Domain to not recognize it as a trusted source. How is that trust established?

Windows Server 2016
Windows Server 2016
A Microsoft server operating system that supports enterprise-level management updated to data storage.
2,400 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,746 questions
Windows Server Infrastructure
Windows Server Infrastructure
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Infrastructure: A Microsoft solution area focused on providing organizations with a cloud solution that supports their real-world needs and meets evolving regulatory requirements.
518 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Dave Patrick 426.2K Reputation points MVP
    2023-10-19T21:34:23.48+00:00

    Not much to go on but you could try disjoin domain, reboot, join domain.

    --please don't forget to close up the thread here by marking answer if the reply is helpful--

  2. Daisy Zhou 19,271 Reputation points Microsoft Vendor
    2023-10-24T01:29:54.79+00:00

    Hello Michael Minette,

    Thank you for posting in Q&A forum.

    Based on the description "Members of the Server's Domain to not recognize it as a trusted source. How is that trust established?", do you mean the trust relationship between domain client or member server is lost?

    If so, you can try to run the command on domain client or member server.
    Netdom resetpwd /s:target_server /ud:mydomain\domain_admin /pd:*

    /s:server is the name of the domain controller to use for setting the machine account password. This is the server where the KDC is running.
    /ud:domain\User is the user account that makes the connection with the domain you specified in the /s parameter. This must be in domain\User format. If this parameter is omitted, the current user account is used.
    /pd:* specifies the password of the user account that is specified in the /ud parameter. Use an asterisk (*) to be prompted for the password.

    I hope the information above is helpful.

    If you have any question or concern, please feel free to let us know.

    Best Regards,
    Daisy Zhou

    0 comments