Error joining vCenter Server Appliance to Active Directory

Time for another guest blog post and this one by my former colleague Johan Blom @ RTSAB who had problem joining a vCenter Server Appliance 6 U1 to a Windows 2012 R2 domain.

When trying top join domain from vSphere Web Client the following error was seen:


Idm client exception: Error trying to join AD, error code [11], user [XXX\yyy domain [XXXX], orgUnit

Running the command “/opt/likewise/bin/domainjoin-cli join domain.local username” from the VCSA ssh session gave the following error:

Screen Shot 2016-03-01 at 14.10.09
Error: ERROR_GEN_FAILURE [code 0x0000001f]

The below troubleshooting steps were taken to identify the root cause.

  • Verify that smb1 feature was installed on the domain controllers
  • Moved on and verified SMB1 (srvnet) was enabled in the Server Properties which it wasn’t.

The following actions were taken to make it possible to join the Windows 2012 R2 domain.

  • Edit the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer  Windows registry key on all domain controllers with the following values:
    • Key: DependOnService
    • Value: SamSS Srv
      Old vale was SamSS Srv2
  • Rebooted the domain controllers.
  • Verified that SMB1 was enabled on the domain controllers

Now it was possible to join the Windows 2012 R2 active directory domain.

4 pings

Comments have been disabled.