FIX SCCM Server Trust Relationship Issue With Primary Domain

Let’s check how to FIX SCCM Server Trust Relationship Issue with Primary Domain. I had a issue with Hyper-V lab environment.

I was not able to login to SCCM LAB server with Domain User and Local Administrative User. The exact error was “The trust relationship between this workstation and the primary domain failed.”

Problem Statement

I was not able to login to SCCM|SQL server after reinstalling the Windows 10 hyper-v device. The VM connected to the same virtual network as Domain Control.

The Error – The trust relationship between this workstation and the primary domain failed.

**NOT able to login to SCCM|SQL server**

Even I don’t remember the local user name and password to take the hyper-v virtual machine out of domain and add it back.

Local User Password is incorrect - - SCCM Server Trust Relationship Issue — Local User Password is incorrect – SCCM ServerTrust Relationship Issue

Solution – FIX SCCM Server Trust Relationship Issue

I have split the solution or fix to SCCM server Trust Relationship Issue into several sub topics below to have a better understanding.

Remove the Network Adapter

Shutdown the SCCM virtual machine from Hyper-v console
Click on File – Settings from Virtual Machine Window

File Settings option of Hyper-V virtual Machine

Click on Network Adapter option on the left side pane of Settings page
Click on REMOVE button to detach the SCCM virtual machine from network
Click on Apply and OK to close the settings window

Remove Network Adapter of SCCM virtual Machine — Remove **Network Adapter** of SCCM virtual Machine

Click on Start button to start the Virtual Machine
Try to LOGIN with domain user name and password

LOGIN with domain user name and password - SCCM Server Trust Relationship Issue — **LOGIN** with **domain user name** and password – SCCM Server Trust Relationship Issue

Successfully able to login to VM with cached domain credentials and temp user profile

FIX SCCM Server Trust Relationship Issue with Primary Domain | ConfigMgr 1 — **Successfully able to login to VM**

Reset the Local User Password of SCCM Server

Now we have logged into SCCM virtual machine, let’s reset the password of local user account
Add the user to local administrators group
Run the following command “compmgmt”
Select the User called Anoop from Local Users and Groups node
Right click on the user and select RESET Password option

Reset Local User Account - to fix SCCM Server Trust Relationship Issue — **Reset Local User Account – to fix SCCM Server Trust Relationship Issue**

Remove the ConfigMgr Virtual Machine from Domain

Open Control Panel – Search with the key word “Rename“
Click on Rename this Computer link

Rename this Computer link — **Rename this Computer** link

From the System Properties window- Click on CHANGE button

System Properties window- Click on CHANGE button - SCCM Server Trust Relationship Issue — **System Properties** window- Click on **CHANGE** button – SCCM Server Trust Relationship Issue

Select Workgroup option under member of section from Computer name/Domain Change window
Click on OK button to continue

Workgroup option under member of section from Computer name/Domain Change window — **Workgroup** option under **member of** section from **Computer name/Domain Change** window

Click OK on the popup message “After you leave the domain, you will need to know the password of the local administrator account to log in to your computer. Click OK to continue.”
Confirm the Domain User name and password in the popup window
Click OK on “Welcome to the WORKGROUP workgroup” popup window
Click OK on “You must restart your computer to apply these changes. Before restarting, save any open files and close all programs.” window
Shutdown the SCCM Virtual Machine

Welcome to the WORKGROUP workgroup - SCCM Server Trust Relationship Issue — Welcome to the WORKGROUP workgroup – SCCM Server Trust Relationship Issue

Add the Network Adapter Back

I removed the network adapter in the above section. Now it’s time add the same network adapter back to get the connectivity back to primary domain controller in the LAB.

Click on File – Settings from Virtual Machine Window
Click on ADD Hardware option on the left side pane of Settings page
Select Network Adapter and click on ADD button to attach the SCCM virtual machine back to LAN network
Select the virtual Switch you want to connect “LAN” in my scenario
Click on Apply and OK to close the settings window

Add the Network Adapter Back to Virtual Machine - SCCM Server Trust Relationship Issue — Add the Network Adapter Back to Virtual Machine – SCCM Server Trust Relationship Issue

Add Virtual Machine back to Domain

Start the Virtual Machine
Login to Virtual Machine with local user account and password (did reset the password in the above step)
Open Control Panel – Search with the key word “Rename“
Click on Rename this Computer link
From the System Properties window- Click on CHANGE button
Select Domain option under member of section from Computer name/Domain Change window
Enter your domain FQDN “Intune.com”
Enter the domain user name and password
Click on OK button to continue

**Add the Virtual machine back to Domain**

Click OK on popup window message “Welcome to the Intune.com domain.“
Restart the Virtual Machine to complete the domain join process

Welcome to the Intune.com domain." - Successfully add the SCCM virtual Machine back to domain — **Welcome to the Intune.com domain.**” – Successfully add the SCCM virtual Machine back to domain

Results

Login to virtual machine with domain user name and password
Launch SCCM console successfully