Stupidly, I attempted to join a new 2008 R2 DC to our domain the other day. I was doing it from a different site, but heck, should be no sweat, right?
DNS was good, name resolution worked, and the machine could join the domain, but why the dcpromo errors?
“failed to examine the active directory forest. the error was: the operation cannot conitnue because the ldap connect/bind operation failed: error: 58”
“the operation cannot continue because ldap connect/bind operation failed: error: 1326”
I tried various fixes and whatnots…and then stumbled across a little tidbit here that implied that the computer administrator (pre-domain) password might need to match the forest root domain administrator password.
Having exhausted all my other possibilities, I tried this - and did not expect any success.
But, WTFO! It worked. So now the question is, why?