Let’s check how to FIX SCCM Server Trust Relationship Issue with Primary Domain. I had a issue with Hyper-V lab environment.
I was not able to login to SCCM LAB server with Domain User and Local Administrative User. The exact error was “The trust relationship between this workstation and the primary domain failed.”
TL;DR
Problem Statement
I was not able to login to SCCM|SQL server after reinstalling the Windows 10 hyper-v device. The VM connected to the same virtual network as Domain Control.
The Error – The trust relationship between this workstation and the primary domain failed.
Even I don’t remember the local user name and password to take the hyper-v virtual machine out of domain and add it back.
Solution – FIX SCCM Server Trust Relationship Issue
I have split the solution or fix to SCCM server Trust Relationship Issue into several sub topics below to have a better understanding.
Remove the Network Adapter
- Shutdown the SCCM virtual machine from Hyper-v console
- Click on File – Settings from Virtual Machine Window
- Click on Network Adapter option on the left side pane of Settings page
- Click on REMOVE button to detach the SCCM virtual machine from network
- Click on Apply and OK to close the settings window
- Click on Start button to start the Virtual Machine
- Try to LOGIN with domain user name and password
- Successfully able to login to VM with cached domain credentials and temp user profile
Reset the Local User Password of SCCM Server
- Now we have logged into SCCM virtual machine, let’s reset the password of local user account
- Add the user to local administrators group
- Run the following command “compmgmt”
- Select the User called Anoop from Local Users and Groups node
- Right click on the user and select RESET Password option
Remove the ConfigMgr Virtual Machine from Domain
- Open Control Panel – Search with the key word “Rename“
- Click on Rename this Computer link
- From the System Properties window- Click on CHANGE button
- Select Workgroup option under member of section from Computer name/Domain Change window
- Click on OK button to continue
- Click OK on the popup message “After you leave the domain, you will need to know the password of the local administrator account to log in to your computer. Click OK to continue.”
- Confirm the Domain User name and password in the popup window
- Click OK on “Welcome to the WORKGROUP workgroup” popup window
- Click OK on “You must restart your computer to apply these changes. Before restarting, save any open files and close all programs.” window
- Shutdown the SCCM Virtual Machine
Add the Network Adapter Back
I removed the network adapter in the above section. Now it’s time add the same network adapter back to get the connectivity back to primary domain controller in the LAB.
- Click on File – Settings from Virtual Machine Window
- Click on ADD Hardware option on the left side pane of Settings page
- Select Network Adapter and click on ADD button to attach the SCCM virtual machine back to LAN network
- Select the virtual Switch you want to connect “LAN” in my scenario
- Click on Apply and OK to close the settings window
Add Virtual Machine back to Domain
- Start the Virtual Machine
- Login to Virtual Machine with local user account and password (did reset the password in the above step)
- Open Control Panel – Search with the key word “Rename“
- Click on Rename this Computer link
- From the System Properties window- Click on CHANGE button
- Select Domain option under member of section from Computer name/Domain Change window
- Enter your domain FQDN “Intune.com”
- Enter the domain user name and password
- Click on OK button to continue
- Click OK on popup window message “Welcome to the Intune.com domain.“
- Restart the Virtual Machine to complete the domain join process
Results
- Login to virtual machine with domain user name and password
- Launch SCCM console successfully
