"Directory service is busy" error when you rename a domain-joined computer on a Windows Server 2012 R2 DC

Symptoms
This issue occurs when the following conditions are true:
  • A Windows Server 2012 R2 domain controller services the rename operation.
  • The Service Principal Name (SPN) that's registered by Microsoft SQL Server or Microsoft SQL Express contains non-numeric characters after the ":" delimiter in the SPN attribute of the computer account that's being renamed.
Note A rename operation that uses the rename-computer PowerShell cmdlet also fails with the same error.

The NETSETUP.log logs status code 0x200e, as follows:
NetpChangeMachineName: from 'ComputerName' to 'NewComputerName' using 'dc1.contoso.com\administrator' [0x2]
NetpDsGetDcName: trying to find DC in domain 'CONTOSO', flags: 0x1010
NetpDsGetDcName: found DC '\\DC1' in the specified domain
NetpChangeMachineName: status of connecting to dc '\\DC1': 0x0
NetpGetLsaPrimaryDomain: status: 0x0
NetpManageMachineAccountWithSid: status of NetUserSetInfo on '\\DC1' for 'ComputerName': 0x200e

Cause
This issue occurs because Active Directory Domain Services (AD DS) expects there to be a port number after the ":" delimiter. Therefore, SPN validation fails.
Resolution
To fix this issue, install the update that's described in update 3103709.
Status
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
References
Learn about the terminology that Microsoft uses to describe software updates.
Properties

Article ID: 3152220 - Last Review: 04/20/2016 05:01:00 - Revision: 3.0

Windows Server 2012 R2 Datacenter, Windows Server 2012 R2 Standard, Windows Server 2012 R2 Essentials, Windows Server 2012 R2 Foundation

  • kbsurveynew kbfix kbexpertiseadvanced KB3152220
Feedback