I've managed to get into a loop hole and cannot find a way out.
I have a server using Microsoft Virtual Server 2005 that I recently had to restart, so I shutdown all of the guests Virtual Machines and then restarted the host.
There are about 8 virtual machines in total, one of which is an Active Directory domain controller.
About a week ago, I also went around all of the servers (both physical and virtual) to disable the local accounts, including Administrator, as the domain appeared to be working fine.
However, now that the physical host server has restarted, I cannot logon any longer via remote desktop – as the domain is not contactable (due to the virtual machine being powered down) and the local administrator account is disabled.
I have tried connecting from another physical server (via Computer Management) to try and re-enable the local accounts, but I don't have permission (and/or RPC appears to be blocked – again, via Domain Controller group policy). I've tried connecting to Virtual Server 2005 to switch on the Domain Controller VM – but again, no accounts with access.
How can I get out of this? I need to switch all of the VMs on ASAP!
Best Answer
Boot it up in safe mode and re-enable the local Administrator account.
Do-not-ever disable it again, assign it a crazy password, write it down on a note and lock it away if something like this happends again.
Also, don't virtualize all your basic networking services (like a domain controller). Install windows server on a old PC, configure it as a domain controller, global catalog, DNS and DHCP (if you use DHCP), and place the PC somewhere else in the building.