Share via

RODC authentication issue

Kumari, Nidhi (Cognizant) 20 Reputation points
2024-02-22T08:35:53.57+00:00

We have created one isolated network for disaster recovery setup. there we are restoring vms using veeam backup tool and testing vms. In this isolated network we have created RODC server on which we added two ips one from production environment and one from isolated environment , so that our isolated network vms can authenticate by RODC and we can login using domain accounts. Also, in restored vms we have given primary DNS as RODC IP. Also, in RODC we have added domain users to " allow users to authenticate using RODC " group. But still if we are logging in using domain account, getting there is no logon server available for authentication. Please someone assist us.

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Server | User experience | Other

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Thameur-BOURBITA 36,491 Reputation points Moderator
    2024-02-22T09:52:08.8333333+00:00

    Hi @Kumari, Nidhi (Cognizant)

    Did you check if the subnet of computer is assigned to RODC site in sites and services console ? Did you check if the computer account is allowed to save its password on RODC ? Did you check if there is any mistake on deny Policy ? Did you try to add user instead of adding domain users group ? You can check the list of computer and users with the password replicated to RODC: prp8

    For mor information , please refer the following article: PASSWORD REPLICATION IN RODC

    Please don't forget to accept helpful answer

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.