We have a domain with two Domain Controllers on Windows Server 2016. AFWDC1 and AFWDC2. DC1 is primary and crashed last weekend during a power outage. We ran microsoft recovery and were able to get it back up but now it has lost its trust/binding/authentication privileges, time has been off, applications cannot authenticate to it to verify new users as before, etc.
Can ping and get to DC1 via console but cannot remote desktop to it.
When trying via host name it does not connect. When trying via IP it fails and says, "an attempt was made to logon but the network logon service was not started"
Have checked and the netlogon service is started.
IP is correct and DNS is our DC ips and 127.0.0.1
Ran a dcdiag on DC1 and here are the results:
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
Home Server = AFWDC01
[AFWDC01] Directory Binding Error -2146893022:
The target principal name is incorrect.
This may limit some of the tests that can be performed.
* Identified AD Forest.
Done gathering initial info.
Doing initial required tests
Testing server: FortWorth\AFWDC01
Starting test: Connectivity
[AFWDC01] DsBindWithSpnEx() failed with error -2146893022,
The target principal name is incorrect..
Got error while checking LDAP and RPC connectivity. Please check your firewall settings.
......................... AFWDC01 failed test Connectivity
Doing primary tests
Testing server: FortWorth\AFWDC01
Skipping all tests, because server AFWDC01 is not responding to directory service requests.
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : gdc
Starting test: CheckSDRefDom
......................... gdc passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... gdc passed test CrossRefValidation
Running enterprise tests on : gdc.com
Starting test: LocatorCheck
Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1722
A Global Catalog Server could not be located - All GC's are down.
Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1722
A Primary Domain Controller could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(TIME_SERVER) call failed, error 1722
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 1722
A Good Time Server could not be located.
Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1722
A KDC could not be located - All the KDCs are down.
......................... gdc.com failed test LocatorCheck
Starting test: Intersite
......................... gdc.com passed test Intersite
Any ideas? Have not come across this before so more explaining can help. Thank for any help/input! Let me know if you need more info.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 65%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EO%3C/text%3E%3C/svg%3E)
