JSI Tip 7648. You cannot connect to a remote Windows Server 2003 domain controller from the Active Directory Users and Computers snap-in?

When you right-click on Active Directory Users and Computers \[<Domain Name>\] and press Connect to Domain Controller, you cannot successfully connect.

This behavior is indicative on incorrect permission on the HKEY_LOCAL_MACHINE\SYSTEM\CurentControlSet\Control\SecurePipeServers\WinReg key of the remote servers registry.

To resolve this problem, use Regedit / Edit / Permissions to verify/set the following minimal permissions:

Administrators group          Full Control, Read
Backup Operators group        Read
Enterprise Admins group       Read
Local Service account         Read
NOTE: If a group or account is missing, press Add, type the identity, press Check Names, and OK.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.