Security database on the server...

-

hello.

in company have 2x ad dc, primary working on windows server 2k3, additional working on windows server 2k8. at workstations appear error: " security database on server not have computer account workstation ". turned off preauthentication people accounts , computers account, doesn't help. remove computer account form ad , added next time doesn't to. times, when at workstation appear error is need to reboot computer , user can sign in computer. in event log there errors related wins server. solutions? best regards.  

ps. when shutdown 2k8 ewerthing ok.

error logs in event viewer:

"logon attempt by:  microsoft_authentication_package_v1_0

logon account:     pc-beh-37$

source workstation:             pc-beh-37

error code:           0xc0000064

 

 

for more information, see , support center @ http://go.microsoft.com/fwlink/events.asp."

 

"

pre-authentication failed:

               user name:            mateusz

               user id:                  nfm\mateusz

               service name:       krbtgt/nfm

               pre-authentication type:      0x0

               failure code:         0x19

               client address:      10.0.0.50

 

 

for more information, see , support center at

"

 

"

authentication ticket request:

               user name:                           nt authority\network service

               supplied realm name:         nfm

               user id:                                 -

               service name:                       krbtgt/nfm

               service id:                             -

               ticket options:                      0x40810010

               result code:                          0x6

               ticket encryption type:        -

               pre-authentication type:      -

               client address:                      127.0.0.1

               certificate issuer name:      

               certificate serial number:   

               certificate thumbprint:        

"

jacekl.

as "security database on server not have computer account workstation" there can multiple reassons.

  • the obivious 1 computer account got deleted ad, still there/a reboot solves it... that's not case

more likely:

the "pre-authentication failed" errors can safely ignored. more or less inherent kerberos protocol. client tries kerberos communication withouth timestamp included, gets warning , told put additional informaton in request (explanation not precise, it's correct more or less)

http://setspn.blogspot.com


Windows Server  >  Directory Services



Comments

Post a Comment

Popular posts from this blog

Azure MFA with Azure AD and RDS

-
i have setup following lab in azure , need help. a server (domain controller) , remote desktop services. and server multi factor authentication server. i have setup following one http://www.rdsgurus.com/uncategorized/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/ and when im connecting got following error. the user "domain\username", on client computer "xxx.xxx.xxx.xxx", did not meet connection authorization policy requirements , therefore not authorized access rd gateway server. authentication method used was: "ntlm" , connection protocol used: "rpc-http". following error occurred: "23003". also on security log i've got following authentication details: connection request policy name: ts gateway authorization policy network policy name: - authentication provider: radius proxy authentication server: test.test.local authenticati...
Read more

Failed to setup initiator portal. Error status is given in the dump data.

-
hi team, server configured boot san  after booting  facing issue windows server 2008 r2 system logs continuously generating iscsi port error event id 5 failed setup initiator portal. error status given in dump data. eventdata \device\raidport1 000004000100000000000000050000c0000000000000000000000000000000000000000000000000070200c0 binary data: in words 0000: 00040000 00000001 00000000 c0000005 0008: 00000000 00000000 00000000 00000000 0010: 00000000 00000000 c0000207 in bytes 0000: 00 00 04 00 01 00 00 00 ........ 0008: 00 00 00 00 05 00 00 c0 .......À 0010: 00 00 00 00 00 00 00 00 ........ 0018: 00 00 00 00 00 00 00 00 ........ 0020: 00 00 00 00 00 00 00 00 ........ 0028: 07 02 00 c0 ...À hi, please read through article below troubleshoot issue: error event id 5 logged in system log on computer uses iscsi software initiator connect iscsi target device http://suppo...
Read more

Invalid pointer on gpresult /h gpreport.html

-
hello guys i getting following error when trying generate gpresult /h  xxx.html invalid pointer this happening on windows 7 pc using test group policy. tried pc same thing when same gpo applied . hi, try apply some other gpo clients, html report generated succefully? if no, may caused unregistered .dll files, try register .dll files previous thread suggested: http://social.technet.microsoft.com/forums/en-us/winservergp/thread/0ea20c5d-c0ae-457d-89d4-a1686a359e72 if yes, please tell detailed information problematic gpo settings reproduce problem , troubleshooting it. regards, cicely Windows Server  >  Group Policy
Read more