Wondering how to fix the broken trust relationship between workstation and domain? Take a peek at this blog for solutions.
This error arises when a user tries to log in to the workstation using domain credentials.
Here at Bobcares, we have seen several such Windows-related errors as part of our Server Management Services for web hosts and online service providers.
Today we’ll see how to resolve this problem.
How we fix the error ‘broken trust relationship between workstation and domain’
Now let’s take a look at how our Support Engineers resolve this error for our customers.
In order to resolve this error, we remove the computer from the domain and then connect the computer to the domain.
- First, we use a local administrator account to log on to the computer.
- Next, we select Start, press, and hold (or right-click) Computer >> Properties.
- After that, we select Change settings next to the computer name.
- On the Computer Name tab, we select Change.
- Then under the Member of heading, we select Workgroup and type a workgroup name and then select OK.
- We click on Ok when we are prompted to restart the computer.
- Then on the Computer Name tab, we select Change again.
- Under the Member of heading, we select Domain and then type the domain name.
- After that, we select OK and then type the credentials of the user who has permissions in the domain.
- Finally, when we are prompted to restart the computer, we select OK and restart the computer.
Fix using PowerShell
Another way to resolve this error is by using PowerShell.
First, we open the PowerShell console using the Test-ComputerSecureChannel cmdlet.
In case, if the passwords do not match and the computer cannot establish a trust relationship with the domain, the command will return the below message
False – The Secure channel between the local computer and the domain bobcares.com is broken.
Then to force a reset, we run the below command.
Test-ComputerSecureChannel –Repair –Credential (Get-Credential)
Then to reset a password, we enter the credentials of a user account having the privilege to reset a computer account password. The user must be delegated the permissions to manage computers in Active Directory.
Then we run
Test-ComputerSecureChannel again to make sure it returns True.
So the computer password has been reset without a restart or manual domain rejoin. Now we can logon to the computer using the domain account.
[Need any further assistance in fixing Windows errors? – We are here to help you]
Today, we saw how our Support Engineers fix the ‘broken trust relationship between workstation and domain’ problem.