Mike H. - Another Geek In Need...

WebLog
  Home  |   Contact  |   Syndication    |   Login
  58 Posts | 6 Stories | 216 Comments | 293 Trackbacks

News

Archives

Post Categories

Image Galleries

Development

Favorite Blogs

Hosting

User Groups

The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain

I've been working on a project that required a domain controller and application server to test the application.

I used VPC 2004 to build 2 Windows 2003 Servers for this. I initially created 1 VPC and performed the upgrades / patches, etc. Then I'd copy this file, renaming it and placing it in a different folder for the virtual hard disk, etc.

When I promoted my DC and joined it with the application server, all went well - until I tried to logon to the DC. I received the above mentioned error.

Because I created only ONE Windows 2003 Server, the SID is the same on both of my virtual machines because I simply copied the virtual hard drive and renamed it. If you have MSDN and you're wanting to save time - why install Windows 2003 more than once, right? Well, wrong.

Fortunately I haven't been the only one to see this. You can download NewSID from SysInternals (http://www.sysinternals.com/Utilities/NewSid.html) and it will change the SID on the server you are wanting to connect to the DC with. They even include the source code - for educational purposes.

NOTICE: Before running the NewSID application, MAKE SURE YOU ARE NOT JOINED TO THE DC - otherwise, you'll have to muddle through logging on locally, disconnecting, and rejoining the DC. When the SID is changed, and if you are connected, the new SID generated has NO permissions. A no brainer perhaps, but I just wanted to mention this here.

posted on Sunday, May 01, 2005 10:20 PM

Feedback

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 8/19/2005 9:41 PM Ravi
Hello Mike

I have a Virtual PC , installed with BizTalk and all it's required software like SQL Server, VS.NET etc.

I want to a create one more Virtual PC for testing and if I use NewSID to change the SID, then will it also change the Server name for SQL server.? or Will just changing SID and keeping old Server name for SQL Server work?

Thank you in advance

Regards
Ravi


# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 9/6/2005 11:46 AM Michael Hamilton
Ravi / Amit - My apologies. I did receive the email originally from Ravi, and I responded directly. I should have placed the response here - but I'm still new at this stuff, so please forgive me.

I suspect that my initial response did not reach Ravi... So...

When you run NewSID, it does not default to changing the server's name. You can, as an option, elect to change the server name and that will be done when the new SID is being applied.

If this server is an already named SQL Server, and the name is unique, you do not have to rename it - which would mean you might have to modify code or other application references to SQL Server.

NOTE: The server cannot be joined to any domain controllers - it must be a stand-alone server before NewSID is executed - otherwise, you'll end up unjoining the domain and running NewSID again (and you'll have to do this by logging onto the server locally, unjoining, etc.).

Again, my apologies for not responding via the blog Ravi.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 4/24/2006 8:26 PM BlankMonkey
sweet, TY (=

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 7/21/2006 8:47 AM Nadeem
Thanks for the input, its a great help!!

this error also occurs in VMware when cloning 2 machines adding them to a network and promoting 1 of them to DC then attempting to login to the domain from the other server.



# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 8/17/2006 5:53 PM Ped
Saved me loads of time thx I thought it was twiggered.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 8/24/2006 10:32 PM Harry
Many thanks, it's a great help!

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 8/27/2006 5:45 AM Yotko
man... i LOVE those sysinternals guys! Every time I run into some crap that I need a tool for, they already made it!!!

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 9/11/2006 7:27 PM KJM
Hi all,
The link posted above no longer works. Does any know of another download link that might work?
thanks

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 9/12/2006 8:20 AM MikeH
Hi KJM,

Which link are you referring to that is not working?

Thanks...

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 10/1/2006 1:17 PM Bret
This is great! Works like a champ! Thanks for your insight Mike and thanks to Sysinternals guys for having the tool!

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 11/2/2006 7:41 PM S.J. Riemens
Unfortunately I experienced the same problem with VMware (Workstation 5.00 build 13124) on joining W2k3 member server to a W2K3 domain. The member was cloned.The problem was fixed by using NewSid. Cool!

# It worked 11/19/2006 4:01 PM Lawrence
Thanks, it worked perfectly !

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 2/15/2007 12:49 AM BillE
It now appears that Microsoft bought sysinternals and has lots of warnings and disclosures around NewSID.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 3/23/2007 2:33 AM pinaki
I tried the NewSID app and changed the SID without opting to chane the computer name. I also have SQLServer on this machine. Now the SID was changed successfully but my SQLServerAgent refuses to start. Any ideas......

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 3/23/2007 7:43 AM MikeH
Hi pinaki,

The SQL Server Agent is attempting to running under a given user or service account.

Open SERVICES.MSC and locate the SQL Server Agent service.

Check the account it is trying to run under. You may simply need to re-add that account, enter and confirm the password - and that may fix the problem.

Let me know...

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 5/10/2007 5:02 PM John Wayne
This is awesome!! It worked perfectly..

Thank You!!!!!

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 7/7/2007 5:43 AM Howard Stone
I too had this problem when cloning virtual machines in VMware Workstation 6.0. Just to save some time, the corrected link to download the NEWsid.exe file is here:

http://www.microsoft.com/technet/sysinternals/Security/NewSid.mspx

Hope that helps!

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 7/24/2007 11:10 AM TonyD
Does this work with 2003 server??


# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 7/24/2007 11:54 AM Mikeh
Hi TonyD

If you're asking - does newSID working with Win 2K3? Absolutely.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 8/30/2007 5:05 AM Lucki
Hi All,

the URL which is linked above is not working. please suggest me an alternate for same.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 8/30/2007 6:38 AM MikeH
Hi Lucki,

If you copy/paste that URL into a new browser window - it should work fine - I just tested it this morning.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 9/19/2007 4:12 PM Andy
Thanks Howard, worked a treat on my W2k3 R2 SP2 image!

FYI - i had to rejoin the machine to the domain to allow my domain admin privalidges to work properly.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 10/20/2007 4:49 AM jayram
plz help me i have installed ad in virtual pc i have to make installation another svr2k3 for exch2k3 seperately but does't allow any user to log on that newly installed machine it gives errror : The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain.

Plz give me any help regarding this issue

Thanx and regards
Jayram

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 10/20/2007 7:31 AM MikeH
Hi Jayram,

You have to log into the machine in question as local administrator - unjoin it from the domain, then run the newSID application on it before joining it back to the domain.

If the machine in question is a domain controller - promoted with AD - then you need to demote the server (running dcpormo) - after it restarts, run newSID - then promote the DC again.

Sorry there isn't an easier fix that I know of.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 10/21/2007 11:03 PM NWADMIN
Hello ...

Virutalization is just so easy now. Just create one machine and then make copies of first created machine.

after mount copied VMs just download SID changer utility from internet. here is path.

http://www.sysinternals.com/files/NewSid.zip

just run it on all copied machines and replace your own or auto sid replacement.

DONE.


just 1 2 3

Enjoy

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 11/28/2007 6:19 PM Frank Huang
Unfortunately, The path of http://www.sysinternals.com/files/NewSid.zip is moved to a new path by Microsoft. The new path is
http://download.sysinternals.com/Files/NewSid.zip

Just download it and unzip to your destination host, run step by step, this problem will be well fixed. :)

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 3/17/2008 1:53 AM tushar
Hi Mike,

I formatted a machine and added it to a domain, however while logging next time in the same domain I received the above message and hence cant log on to the domain.

What is this SID and how can I change it?

Can u please help regarding the same?

Regards,
Tushar M.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 3/17/2008 4:43 AM MikeH
Hi Tushar,

You should still be able to log into the machine LOCALLY - make sure the option below the password line is set to the machine. You can still login with the original Administrators password.

Then download NewSID from http://technet.microsoft.com/en-us/sysinternals/bb897418.aspx - the download link is on the right side of the page.

You'll want to dcpromo and unjoin the domain before running this program.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 6/17/2008 2:51 AM Abhijeet Kakade
Hey!! Thank You all...:)

This helped me quick enough to test a few things in my environment...

Appreciate it!

Regards,
Abhijeet.

# re: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain 6/20/2008 3:26 AM paper machines
the name is unique, you do not have to rename it - which would mean you might have to modify code or other application references to SQL Server.


Post Feedback

Title:
Name:
Email: (never displayed)
Url:
Comments: 
Please add 1 and 3 and type the answer here: