Can not join the domain Error: "KRB5KDC_ERR_C_PRINCIPAL_UNKNOWN (-1765328378)"
Can not communicate to a domain controller on port 88 or 389. vastool info servers command shows a large list of domain contollers and and site = (any) at top of the output
WORKAROUND:
Join directly to the domain controllers that the machine can communicate with. While joining the machine to the domain, make sure that all the servers are specified (in order of preference). You must specify the full domain controller name.
vastool -u <ADadminAccount> join <yourdomain.com> <domaincontroller1.yourdomain.com> <domaincontroller1.yourdomain.com>
RESOLUTION:
Add the machine's subnet into a Active Directory Site that it should be a part of.
You can also specify the site on the join command using the -s <site> option.
Here is a command to check what domain controllers QAS while try to communicate with:
# vastool info servers
Servers type = DC, domain = i.ts.qsft, site = Default-First-Site-Name:
adc01.i.ts.qsft
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center