Error joining domain

[gn3t1c]

I had a 2K server in a 2K3 domain. I keept getting group policy related
errors in the event log. I took the server out of the domain. I got the
error stating the the machines as removed but the account was not. I
deleted the account from AD. Now, I'm trying to join the domain again
and I get the following error; "no mapping between account names and
security IDs could be found". I get now events relating to this on my
DCs or on the server to be domained. I placed the server in a work
group and tried joining again, I reapplied SP4, and I tried repairing
the security dB per TechNet article. Nothing worked. Any ideas?

 

[Ace Fekay [MVP]]

In

I had a 2K server in a 2K3 domain. I keept getting group policy
related errors in the event log. I took the server out of the domain.
I got the error stating the the machines as removed but the account
was not. I deleted the account from AD. Now, I'm trying to join the
domain again and I get the following error; "no mapping between
account names and security IDs could be found". I get now events
relating to this on my DCs or on the server to be domained. I placed
the server in a work group and tried joining again, I reapplied SP4,
and I tried repairing the security dB per TechNet article. Nothing
worked. Any ideas?

What article are you referring to?
What GPO errors are you seeing in the Event logs? Please post the EventID
and Source.
Was this machine a DC?
Can you post an ipconfig /all of the server please?

Thanks,
Ace

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

Having difficulty reading or finding responses to your post?
Instead of the website you're using, I suggest to use OEx (Outlook Express
or any other newsreader), and configure a news account, pointing to
news.microsoft.com. This is a direct link to the Microsoft Public
Newsgroups. It is FREE and requires NO ISP's Usenet account. OEx allows you
to easily find, track threads, cross-post, sort by date, poster's name,
watched threads or subject.

It's easy:
How to Configure OEx for Internet News
http://support.microsoft.com/?id=171164

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Directory Services
Microsoft Certified Trainer

Infinite Diversities in Infinite Combinations
Assimilation Imminent. Resistance is Futile
"Very funny Scotty. Now, beam down my clothes."

The only thing in life is change. Anything more is a blackhole consuming
unnecessary energy. - [Me]

 

[gn3t1c]

Its wasnt a DC, it was a member server. I didnt pay to much attention
to the GPO related errors since I was removing the server from the
domain.

From the member server with the issue.

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : ORLMSNS001
Primary DNS Suffix . . . . . . . : vacationsonly.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : vacationsonly.com

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit
Ethernet
#3
Physical Address. . . . . . . . . : 00-C0-9F-29-79-C2
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.10.21.254
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . : 10.10.1.45
DNS Servers . . . . . . . . . . . : 10.10.21.186
10.10.21.184
Primary WINS Server . . . . . . . : 10.10.21.184


This is from a working DC:
Windows IP Configuration

Host Name . . . . . . . . . . . . : orlmsdc003
Primary Dns Suffix . . . . . . . : vacationsonly.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : vacationsonly.com

Ethernet adapter NIC2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : HP NC3163 Fast Ethernet NIC #2
Physical Address. . . . . . . . . : 00-50-8B-EC-D6-15
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.10.21.184
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . : 10.10.1.45
DNS Servers . . . . . . . . . . . : 10.10.21.184
10.10.21.186
Primary WINS Server . . . . . . . : 10.10.21.186

 

[Ace Fekay [MVP]]

In

Its wasnt a DC, it was a member server. I didnt pay to much attention
to the GPO related errors since I was removing the server from the
domain.


Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : ORLMSNS001
Primary DNS Suffix . . . . . . . : vacationsonly.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : vacationsonly.com

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit
Ethernet
#3
Physical Address. . . . . . . . . : 00-C0-9F-29-79-C2
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.10.21.254
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . : 10.10.1.45
DNS Servers . . . . . . . . . . . : 10.10.21.186
10.10.21.184
Primary WINS Server . . . . . . . : 10.10.21.184


This is from a working DC:
Windows IP Configuration

Host Name . . . . . . . . . . . . : orlmsdc003
Primary Dns Suffix . . . . . . . : vacationsonly.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : vacationsonly.com

Ethernet adapter NIC2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : HP NC3163 Fast Ethernet NIC #2
Physical Address. . . . . . . . . : 00-50-8B-EC-D6-15
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.10.21.184
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . : 10.10.1.45
DNS Servers . . . . . . . . . . . : 10.10.21.184
10.10.21.186
Primary WINS Server . . . . . . . : 10.10.21.186

Thanks for posting that. They both look good. Mapping name errors are an
interesting breed. Apparently it may have been caused by renaming the
machine, or simply removing it from the domain and putting it back in again.
Or did you reinstall the machine (upgraded or fresh)? Basically it's a
duplicate SID issue, or expecting one SID and getting another. Maybe just
renaming it to something else may help. Check this article (don't pay
attention to the title):

You receive a "No mapping between account names and security IDs was done"
error when you edit and then save a Group Policy object in Windows XP
Professional
http://support.microsoft.com/?kbid=890737

Ace