NETLOGON Event 3210

Question

Hi,

Hello. We have six terminal farm servers. Windows Server 2019, all updates. Today there was a problem with one server, it is not possible to log in:

We can't sign you in with this credential because yor domain is't available. Make sure your device is connected to your organization's network and try again

From logs i see: NETLOGON Event 3210

This computer could not authenticate with DOMAINURL, a Windows domain controller for domain DOMAINNAME, and therefore this computer might deny logon requests. This inability to authenticate might be caused by another computer on the same network using the same name or the password for this computer account is not recognized. If this message appears again, contact your system administrator.

Why did this arise? How to diagnose ?

• I turn off Ipv6 on all servers, could this affect it ?

Answer 1

Hi. I got that error again
Test-ComputerSecureChannel returns false

Test-ComputerSecureChannel -Repair: Unable to reset the secure channel password for a domain computer account. An operation failure occurred with the following exception: The server is inoperable.

Restarting the netlogon service did not help.

Answer 2

You may need to rejoin the domain with this problem member.

--please don't forget to upvote and Accept as answer if the reply is helpful--

Answer 3

It's not a solution. It is repeated every two weeks.

Answer 4

Sounds like something broken in active directory. I'd check the domain health and replication is 100%.

--please don't forget to upvote and Accept as answer if the reply is helpful--

Answer 5

How can I diagnose ? dcdiag /q does not give any errors.

repadmin /showrepl Shows all successfully