Hello,

In addition to what pythonIT mentions:

Double check the server "Active Directory settings" in the configuration --> servers --> [servername] page
make sure root domain is set, security to none.

The IIS application pool SolidCP Server user needs to have a minimum of Domain Admin membership assigned (if any changes are made to the user permissions make sure to do a iisreset).

A note on AD DC DNS:

DC DNS it's highly unrecommended to make them publicly facing DNS servers.

The main reason for this is: Recursive queries need to be disabled, together with all root hints deleted to be a safe DNS server that doesn't get abused to attack others or your self.

This in return means that dns forwarders do not work. so any domain name that's not in your own AD DC DNS won't be able to resolve. yet generally you configure all domain joined servers with the AD DC DNS's. making them unable to connect to google for example.

Regards,

Marco

Hello...

The problem is in Active Directory Account Settings.
I checked to create local accounts.

Now I changed the settings:
Create Active Directory Accounts
Authentication Type: Secure
Root domain: mydomain.com
User: mydomainAdministrator
Password: AdministratorPassword

But now when I change the website service, I get this error:

Page URL:
http://cp.pdshosting.com.br/Default.aspx?pid=Servers&mid=223&ctl=edit_service&ServiceID=8&ServerID=3

Logged User:
serveradmin

Work on Behalf:
serveradmin

Hosting Space:
0

Stack Trace:
System.Web.Services.Protocols.SoapException: System.Web.Services.Protocols.SoapException: System.Web.Services.Protocols.SoapException: Server was unable to process request. ---> System.DirectoryServices.DirectoryServicesCOMException: A referral was returned from the server.

at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at SolidCP.Providers.Utils.SecurityUtils.GetUserObject(DirectoryEntry objRoot, String userName, RemoteServerSettings serverSettings)
at SolidCP.Providers.Utils.SecurityUtils.GetAccountSid(String accountName, RemoteServerSettings serverSettings, String usersOU, String groupsOU)
at SolidCP.Providers.Web.IIs70.SetupWebDeployPublishingOnServer(List`1 messages)
at SolidCP.Providers.Web.IIs70.Install()
at SolidCP.Providers.Web.IIs80.Install()
at SolidCP.Server.ServiceProvider.Install()
--- End of inner exception stack trace ---
at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at SolidCP.Providers.ServiceProvider.Install()
at SolidCP.EnterpriseServer.esServers.InstallService(Int32 serviceId)
at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at SolidCP.EnterpriseServer.esServers.InstallService(Int32 serviceId)
at SolidCP.Portal.ServersEditService.btnUpdate_Click(Object sender, EventArgs e)

When I cleaned the user and password not worked, but I found the problem.
The root domain is mydomain.com.br and I put the username mydomainAdministrator.
When I changed to mydomain.com.brAdministrator worked.

The Hosted Organizations and Web Sites services are worked. But the DNS service continue to create the zones as primary instead of Integrated with AD.

tanks for your Support,

Marcel

The solidCP server user are in then domain administrators group>