How to reset trust relationship between computer and a domain

I made a silly mistake and removed my computer from Active Directory. Result? Lost relationship, inability to login and so on. How to resolve it the fastest way?

You have a few options but the worst (and should be your last) is to remove the computer from the domain and rejoin. What is your first option then?

  1. Reset the computer password
    In administrator PowerShell console on the machine that lost trust
    $creds = Get-Credential #use domain\<username>
    Reset-ComputerMachinePassword -Credential $creds -Server <servername> #use PDC or the closest writable DC
  2. Create new computer in Active Directory
    In my case, I had to recreate new computer in Active Directory and then use commands from #1 to reset the password. Worked like a charm
  3. Remove from domain and rejoin
    Not the ideal option but sometimes the only one you have.

If you cannot login or elevate as an administrator, try resetting the local admin password first.

0 replies

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *