Oh, Trend.


You know you’re supposed to disable your anti-virus software when doing pretty much anything, but letting it run never seems to affect anything (unless you’re using a Symantec/Norton product.) I’ve had a love affair with all things Trend Micro because their stuff is pretty good about doing what it’s supposed to do without screwing up other things. But after eight hours of trying to add a Windows Server 2008 computer to an SBS 2008-based Active Directory domain, I have no choice but to point a finger, that one, at Trend Micro WFBS 6.

No matter how I configured networking on the to-be-member machine, I got the following when trying to add it to the domain:

DNS was successfully queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller for domain domain.local:

The query was for the SRV record for _ldap._tcp.dc._msdcs.domain.local
The following AD DCs were identified by the query:


Common causes of this error include:
– Host (A) records that map the name of the AD DCs to its IP addresses are missing or contain incorrect addresses.

– Active Directory Domain Controllers registered in DNS are not connected to the network or are not running. For information about correcting this problem, click Help.

I realized that just yesterday I added the same computer to the domain without any difficulty (and removed it for unrelated reasons.) Sure enough, just unloading the Trend Micro WFBS agent let me connect to the domain.