This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 5%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEI%3C/text%3E%3C/svg%3E)
Hello,
On my secondary DC I'm seeing the event NETLOGON 3210
This computer could not authenticate with \DC.network.local, a Windows domain controller for domain Network, and therefore this computer might deny logon requests. This inability to authenticate might be caused by another computer on the same network using the same name or the password for this computer account is not recognized. If this message appears again, contact your system administrator.
It doesn't appear to be causing any issues but it's something that I'm sure needs to be addresses. I've seen various articles around the topic but none that are quite the issue I have. The closest I can find is: http://blog.cpolydorou.net/2019/02/domain-controller-machine-password-reset.html
I've never reset the machine password of a DC before so a bit apprehensive to follow along. Thoughts anyone?
Many thanks
Edit: I should also add, this DC runs ADsync and has been happily operating for at least 2 years. I've only recently discovered the event so no idea of when it started. Earliest log was 2 months ago.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Try;
Test-ComputerSecureChannel
or
Test-ComputerSecureChannel -Repair
or
The simplest solution may be to move roles off, demote, reboot, promo the problematic one again.
--please don't forget to upvote and Accept as answer if the reply is helpful--
Just checking if there's any progress or updates?
--please don't forget to upvote and Accept as answer if the reply is helpful--
Thanks DSPatrick,
Sorry I didn't get notified of your replies. I've run the commands you've mentioned and the DC does fail, but the repair doesn't work. I was hoping to avoid demoting as it runs our ADSync. I think the easy answer is the normal windows way of doing a clean install. I'll transfer everything over and bomb the DC in question.
Appreciate you time. Thanks
Sounds good, you're welcome.
--please don't forget to upvote and Accept as answer if the reply is helpful--