Insufficient System Resources Exist to Complete Error On Active Directory Domains and Trusts

Issue

I have recently come across a weird issue where when we try to add / remove a UPN suffix from AD Domains and Trusts, we would get the following error.

This started happening after we patched our domain controllers in January 2022. Our PDC is at Windows 2012 R2 version.

It’s a well-known issue as per Microsoft and is due to Dot Net 4.8 so Microsoft advised to install out of band updates for the dot net version you have got on your DC. I tried that and it worked intermittently only.

I also uninstalled KB5010419 as a possible fix and again it worked intermittently only.

Fix

Apply the following reg key on all Domain controllers – Reboot. That should fix it for good.

HKLM\SYSTEM\CurrentControlSet\Control\Lsa

DWORD: EnableNameSuffixFix

Value: 1

Reference: March 8, 2022—KB5011564 (Monthly Rollup) (microsoft.com)

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Create a website or blog at WordPress.com

Up ↑

%d bloggers like this: