Error when you try to add a trusted domain user to a trusting domain in Windows Server 2003 or in Windows 2000: The server is not operational
This article explains that when you try to add a trusted domain user to a trusting domain, you may receive an error message if the guest account on the trusted domain is turned on.
Applies to: Windows 10, Windows Server 2012 R2
Original KB number: 837328
Symptoms
When you click Advanced in the Select Users, Computers, or Groups dialog box in Active Directory Users and Computers and then you try to add a trusted domain user to a trusting domain, you may receive the following error message:
The server is not operational.
Cause
This behavior may occur if the guest account on the trusted domain is turned on. The guest account doesn't have the rights to enumerate users.
Workaround
To work around this behavior, you may use either of the following methods.
Method 1: Turn off the guest account in the trusted domain
To turn off the guest account, follow these steps:
- Click Start, point to Programs, point to Administrative Tools, and then click Active Directory Users and Computers.
- In the console tree, expand the domain where you want to make changes, and then click the Users folder.
- Right-click Guest in the details pane, and then click Disable Account.
Method 2: Create the same trusting domain user account in the trusted domain
To create the same trusting domain user account, follow these steps:
- Click Start, point to Programs, point to Administrative Tools, and then click Active Directory Users and Computers.
- In the console tree, right-click the Users folder, point to New, and then click User.
- Type the information about the user who exists in the trusting domain, and then click Next.
- Type the existing user account password, and then click
Next.
Note
You may also type a different password for this user account. If you create a different password for this user account, the trusted domain may prompt you for the user credentials when you connect to the trusted domain by using this account.
- Click Finish.
Status
This behavior is by design.
References
For more information about how to manage trusts in Microsoft Windows Server 2003, see the "How to Manage Trusts" and "Understanding Trusts" topics in the Active Directory section of the Windows Server 2003 product documentation. To view the documentation, visit the following Microsoft Web site:
Feedback
https://aka.ms/ContentUserFeedback.
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see:Submit and view feedback for