FIX SCCM Server Trust Relationship Issue With Primary Domain

Let’s check how to FIX SCCM Server Trust Relationship Issue with Primary Domain. I had an issue with the Hyper-V lab environment.

I was not able to log in to the SCCM LAB server with Domain User and Local Administrative User. The exact error was “The trust relationship between this workstation and the primary domain failed.”

Problem Statement

I was not able to log in to SCCM|SQL server after reinstalling the Windows 10 hyper-v device. The VM is connected to the same virtual network as Domain Control.

The Error – The trust relationship between this workstation and the primary domain failed.

**NOT able to login to SCCM|SQL server**

Even I don’t remember the local user name and password to take the hyper-v virtual machine out of the domain and add it back.

Local User Password is incorrect - - SCCM Server Trust Relationship Issue — Local User Password is incorrect – SCCM ServerTrust Relationship Issue

Solution – FIX SCCM Server Trust Relationship Issue

I have split the solution or fix to the SCCM server Trust Relationship Issue into several sub-topics below to have a better understanding.

Remove the Network Adapter

Shutdown the SCCM virtual machine from the Hyper-v console
Click on File – Settings from Virtual Machine Window

File Settings option of Hyper-V virtual Machine

Click on the Network Adapter option on the left side pane of the Settings page
Click on the REMOVE button to detach the SCCM virtual machine from the network
Click on Apply and OK to close the settings window

Remove Network Adapter of SCCM virtual Machine — Remove **Network Adapter** of SCCM virtual Machine

Click on the Start button to start the Virtual Machine
Try to LOGIN with the domain user name and password

LOGIN with domain user name and password - SCCM Server Trust Relationship Issue — **LOGIN** with **domain user name** and password – SCCM Server Trust Relationship Issue

Successfully able to login to VM with cached domain credentials and temp user profile

FIX SCCM Server Trust Relationship Issue with Primary Domain | ConfigMgr 1 — **Successfully able to login to VM**

Reset the Local User Password of the SCCM Server

Now we have logged into SCCM virtual machine, let’s reset the password of the local user account
Add the user to the local administrator’s group
Run the following command “compmgmt”
Select the User called Anoop from the Local Users and Groups node
Right-click on the user and select the RESET Password option

Reset Local User Account - to fix SCCM Server Trust Relationship Issue — **Reset Local User Account – to fix SCCM Server Trust Relationship Issue**

Remove the ConfigMgr Virtual Machine from Domain

Open Control Panel – Search with the keyword “Rename“
Click on Rename this Computer link

Rename this Computer link — **Rename this Computer** link

From the System Properties window- click on the CHANGE button

System Properties window- Click on CHANGE button - SCCM Server Trust Relationship Issue — **System Properties** window- Click on **CHANGE** button – SCCM Server Trust Relationship Issue

Select the Workgroup option under a member of the section from the Computer Name/Domain Change window
Click on the OK button to continue

Workgroup option under member of section from Computer name/Domain Change window — **Workgroup** option under **member of** section from **Computer name/Domain Change** window

Click OK on the popup message “After you leave the domain, you will need to know the password of the local administrator account to log in to your computer. Click OK to continue.”
Confirm the Domain User name and password in the popup window
Click OK on the “Welcome to the WORKGROUP workgroup” popup window
Click OK on “You must restart your computer to apply these changes. Before restarting, save any open files and close all programs.” window
Shutdown the SCCM Virtual Machine

Welcome to the WORKGROUP workgroup - SCCM Server Trust Relationship Issue — Welcome to the WORKGROUP workgroup – SCCM Server Trust Relationship Issue

Add the Network Adapter Back

I removed the network adapter in the above section. Now it’s time to add the same network adapter back to get the connectivity back to a primary domain controller in the LAB.

Click on File – Settings from Virtual Machine Window
Click on ADD Hardware option on the left side pane of the Settings page
Select Network Adapter and click on ADD button to attach the SCCM virtual machine back to the LAN network
Select the virtual Switch you want to connect “LAN” in my scenario
Click on Apply and OK to close the settings window

Add the Network Adapter Back to Virtual Machine - SCCM Server Trust Relationship Issue — Add the Network Adapter Back to Virtual Machine – SCCM Server Trust Relationship Issue

Add Virtual Machine back to Domain

Start the Virtual Machine
Login to Virtual Machine with a local user account and password (did reset the password in the above step)
Open Control Panel – Search with the keyword “Rename“
Click on Rename this Computer link
From the System Properties window- click on the CHANGE button
Select the Domain option under a member of the section from the Computer Name/Domain Change window
Enter your domain FQDN “Intune.com”
Enter the domain user name and password
Click on the OK button to continue