ESXi cannot join into AD domain because of NTP time out of sync—— Error: ERROR_GEN_FAILURE [code 0x0000001f]
search cancel

ESXi cannot join into AD domain because of NTP time out of sync—— Error: ERROR_GEN_FAILURE [code 0x0000001f]

book

Article ID: 319875

calendar_today

Updated On:

Products

VMware vCenter Server VMware vSphere ESXi

Issue/Introduction

The error message is similar to the following:

Error: ERROR_GEN_FAILURE [code 0x0000001f]

On the ESXi host, in the /var/run/log/hostd.log, you see entries similar to:

2023-07-31T16:13:22.576Z Er(163) Hostd[2099899]: [Originator@6876 sub=Default opID=esxui-7574-4fe4 sid=520a4ffd user=root] [LikewisePerformDomainAction:185] DJRunJoinProcess(): ERROR_GEN_FAILURE (31/0):

 

In the /var/run/log/syslog, you see entries similar to:

2023-08-01T10:47:44.215Z Er(27) lwsmd[2239226]: [lsass] Failed to run provider specific request (request code = 8, provider = 'lsa-activedirectory-provider') -> error = 31, symbol = ERROR_GEN_FAILURE, client pid = 2252799


 

Environment

VMware vSphere ESXi 7.0.x
VMware vSphere ESXi 8.0.x

VMware vCenter 8.0.x

Cause

ESXi cannot join into AD domain because of NTP time out of sync.

Resolution

Verify that ESXi's ntpd service matches the AD DC's timing.

It is recommended that ESXi and AD DC point to the same NTP server.
The solution is to restart the ntpd service of ESXi host, please refer to the following KB:
Configuring Network Time Protocol (NTP) on an ESXi host using the vSphere Client

Powered by Wolken Software