Error Message: LDAP Bind Error 31 (329873)
The information in this article applies to:
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Server
This article was previously published under Q329873 SYMPTOMS When you use the Domain Controller Diagnostics (DCdiag.exe)
utility on the domain controller computer, you may receive the following error
message: LDAP bind error 31 CAUSE This issue may occur if the properties of the
Domain Controller object in Active Directory are corrupted.
RESOLUTION To resolve this issue, follow these steps:
- Click Start, click Run,
type cmd in the Open box, and then
press ENTER.
- At the command prompt, type nltest
/sc_change_pwd:DomainName, and then
press ENTER.
- Restart the computer, and then start Windows. Try to run
DCdiag.exe again. If you receive a "Not a server trust account" error message,
follow these steps:
- Install Windows 2000 Support Tools by running Setup.exe
from support\tools on your Windows 2000 CD-ROM.
- Click Start, point to
Programs, point to Windows 2000 Support
Tools, point to Tools, and then click ADSI
Edit.
- Expand Domain, expand
DC=DomainName, DC=com object, and
then click CN=Computers.
- In the right pane, right-click the domain controller
object, and then click Properties.
- In the Select a property to view box,
click userAccountControl.
- In the Edit Attribute box, type
532480, and then click Set.
- Close ADSI Edit, and then restart the domain
controller.
| Modification Type: | Minor | Last Reviewed: | 5/27/2003 |
|---|
| Keywords: | kberrmsg kbprb KB329873 |
|---|
|