Q

Resetting a secure channel from a Windows 2000 domain controller

I'm trying to reset a secure channel from Windows 2000 Domain controller (Service Pack 3 installed) to Windows NT PDC (Service Pack 6 installed) with "nltest /sc_reset:<WinNTDomName><WinntPDCName>" command and it fails with the error: "I_NetLogonControl failed: Status = 5 0x5 ERROR_ACCESS_DENIED". It works though for a BDC of the same NT Domain. What could be the problem?
I would guess from your description that you are looking at the trust relationship between the two domains. In the NT world, only one domain controller manages the trust. The BDC is most likely holding the trust information and thus carries the secure connection.
This was first published in February 2004

Dig deeper on Microsoft Active Directory

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchServerVirtualization

SearchCloudComputing

SearchExchange

SearchSQLServer

SearchWinIT

SearchEnterpriseDesktop

SearchVirtualDesktop

Close