Some of websites on IIS server are opening with the following error:
503 Service Unavailable
Application pools are stopped on server. The following error appears in
Event Viewer after attempt to start application pool:
Source: WAS Application pool ex_p00252173 has been disabled. Windows Process Activation Service (WAS) encountered a failure when it started a worker process to serve the application pool.
Also the following warning can be seen:
Source: WAS The identity of application pool ex_p00252173 is invalid. The user name or password that is specified for the identity may be incorrect, or the user may not have batch logon rights. If the identity is not corrected, the application pool will be disabled when the application pool receives its first request. If batch logon rights are causing the problem, the identity in the IIS configuration store must be changed after rights have been granted before Windows Process Activation Service (WAS) can retry the logon. If the identity remains invalid after the first request for the application pool is processed, the application pool will be disabled. The data field contains the error number.
Communication between domain controller and target server is not established:
C:\Users\pem_admin>netdom verify /domain:addomainname.com servername.addomainname.com The secure channel from servername.addomainname.com to addomainname.com is invalid.
IIS web server lost communication with Active Directory domain controller.
In order to resolve the issue, it is required to log out server from domain and then log it in:
- Computer > Properties > Computer name, domain, and workgroup settings > Change settings > Computer name > Change
- In the field Member of change value to any workgroup
- Reboot server.
- Change membership to the same domain as before.
- Reboot server in order to apply settings.