AD broken

Occasional Contributor

Hi All,


DC is Virtualized in vmware, I got it restored from Veeam backup, meaning it is not in the current state, that caused AD broken, how could I get it fixed? 

I forced replication between 2 DCs it failed. Here and there we got a number of PCs that have the error:

The trust relationship between this Workstation and the primary Domain failed
Any help/ advice would be appreciated.
3 Replies

You should never restore a domain controller in a multi-domain controller environment.


Please run;

Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt
ipconfig /all > C:\problemworkstation.txt

then put unzipped text files up on OneDrive and share a link.




Just checking if there's any progress or updates? 


--please don't forget to `upvote` and `Accept as answer` if the reply is helpful--




@Dave Patrick 

thanks for the help.

I found the error 8606 and 1988, because the restored DC was outdated I believe.

At the moment I managed to replicate between 2 DCs by disabling the Strict Replication Consistency and removed the lingering object with LOL tool.

I am monitoring the replication for a week or so then going to enable the Strict Replication Consistency.



We support Ukraine and condemn war. Push Russian government to act against war. Be brave, vocal and show your support to Ukraine. Follow the latest news HERE