How to fix this issue and provide the solution for the error that appears while creating the user

Dear Abhijit Joshi,

My name is Hoang Phan, and I understand that you are having some query concern related to creating new user in Active Directory.

Based on the error code, the problem appears to be related to the domain controller holding the RID master role.

1. Identify the RID Master:
   • Run the following command to determine which domain controller holds the RID master role
   • netdom query fsmo
2. Check the RID Master’s Health
   • Run dcdiag /v
   • Review the output for any failed tests on the RID master. Ensure the RID master is functioning correctly and that there is proper connectivity between all domain controllers, especially with the RID master.
3. Check for Recently Decommissioned DCs
   • If a domain controller was recently decommissioned, take a server backup and follow the Microsoft article below to perform a metadata cleanup to remove remnants of the old DCs.
   • Reference: https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/ad-ds-metadata-cleanup
4. Restart the RID Master
   • After cleanup, perform a clean boot of the RID master holder and check if the issue persists.
5. If the Issue Continues
   • Share the output of dcdiag /v and review the Directory Services event log for any relevant entries.

I hope this information proves helpful. Please don’t hesitate to reach out if you need further clarification—I’ll be happy to assist 🙂

If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.

Best regards,

Hoang Phan