After enabling my AD role in my Windows Server 2012 R2 and promoting it as a Domain Controller, I am no longer able to login locally onto the Windows Server itself.
Specifying my computername\Administrator or .\Administrator doesn't work.
Is it normal?
Answer
When you promote a server to a DC, it no longer uses the local account database. This database is only used when you boot your server in Directory Services Recovery Mode (DSRM), which makes the service inoperative as a DC while booted into this mode. This is the password you get to set when running dcpromo.
This is why your local account will not work - there is no local account any more.
Some more good info may be found in this forum thread on Technet.
No comments:
Post a Comment