Windows cannot create the object because the Directory Service was unable to allocate a relative ide

K

knc

Active Member
Reaction score
43
Location
Kingston, Ny
Windows cannot create the object because the Directory Service was unable to allocate a relative identifier.

Got this message when trying to add a new user to a recently restore VM Server, host died. So my research shows some repairs but I am too timid to perform them, my thought is to call Microsoft for a support session and let them do it. Any thoughts?

My guess is the DNS is pointing to the original Host and that is obviously gone.
 
knc said:
Windows cannot create the object because the Directory Service was unable to allocate a relative identifier.

Got this message when trying to add a new user to a recently restore VM Server, host died. So my research shows some repairs but I am too timid to perform them, my thought is to call Microsoft for a support session and let them do it. Any thoughts?

My guess is the DNS is pointing to the original Host and that is obviously gone.
Click to expand...


If your domain is in a production environment, I suggest you open a TAC case with Microsoft and to always have a backup...



You almost certainly have a problem with your operations masters formerly known as FSMO Roles.

To view the servers running these, do a "netdom query fsmo" in a command prompt window.

It will list the location of your Schema master, Domain naming master, PDC, RID pool manager, and Infrastructure master.


Your problem most likely is with the RID pool manager.



You can test it with a DCDiag

dcdiag /test:ridmanager /v


Anyway, if the role doesn't exist anywhere, you can always SEIZE the role on another Domain Controller restoring functionality.

Here is how:

https://technet.microsoft.com/en-us/library/cc816779(v=ws.10).aspx




The thing is don't just start seizing roles. If you goof things up, you will make your domain worse not better.
 
Microsoft got this resolved, we used our $74 Visual Studio Professional with MSDN 2 support instances. This is what he did. Impressive to watch them work the Powershell.

Cause: Schema master and domain naming master on crashed DC


Resolution:

1.Seized the schema master and domain naming master role to the DC:SERVER2013

2.Performed metadata cleanup for the crashed DC

3.Corrected the DNS pointing on the existing DC

4.Test user created successfully

5.Issue resolved
 
You must log in or register to reply here.

Similar threads

HCHTech
Hyper-V - Moving VM to a new host
Replies
6
Views
981
britechguy
britechguy
britechguy
Windows 11 on Incompatible Hardware & with Local User - a new experience
Replies
17
Views
1K
britechguy
britechguy
britechguy
Accessing a Windows 11 Computer with a Microsoft Account Linked Windows Account After the Owner's Death
Replies
16
Views
3K
fincoder
fincoder
HCHTech
Windows server activation problems
Replies
12
Views
3K
Sky-Knight
Sky-Knight
thecomputerguy
[REQUEST] Service to get a new Phone # that is only used to transcribe voicemail to Email.
Replies
7
Views
1K
britechguy
britechguy
Back
Top