Cannot log on after demoting DC

[David F]

I ran DCPROMO to demote a domain controller.

When it rebooted, I cannot authenticate either locally as Administrator or
through the domain.

Either method authentication, local box or domain, produces a message "The
local security policy does not permit you to
log on locally"

I go to the Domain Controller and try to add this computer to the
logonlocally group but I get a message saying that a "pre Windows2000
computer with this name already exits."

How can I get access to this box?

 

[Torgeir Bakken \(MVP\)]

I ran DCPROMO to demote a domain controller.

When it rebooted, I cannot authenticate either locally as Administrator or
through the domain.

Either method authentication, local box or domain, produces a message "The
local security policy does not permit you to
log on locally"

I go to the Domain Controller and try to add this computer to the
logonlocally group but I get a message saying that a "pre Windows2000
computer with this name already exits."

How can I get access to this box?

Hi

If you have access to the computer over a network, this might work:

http://groups.google.com/groups?selm=3yfLb.22533$P%[email protected]

or alternatively:
http://groups.google.com/[email protected]


If you have no network access, the procedure in the last link might be
doable with an offline registry editor as well, e.g. this one:

http://home.eunet.no/~pnordahl/ntpasswd/editor.html

 

[David F]

Thanks Torgeir

Instead of adding it to the logonlocally group, I moved it there. I then
reset the account and mannually deleted the computer from the
DomainControllers group. I then rebooted both machines and I could log on.

Dave