Results 1 to 3 of 3

Thread: File server denied access by Domain Controller: Access is denied because of failure to authenticate

  1. 23-05-2007 #1
    Jim Guest

    File server denied access by Domain Controller: Access is denied because of failure to authenticate

    I'm having a problem with a file server authenticating with the domain
    controller or allowing users in the domain to map a file share on the file
    server. The configuration has been stable for several years; this is the
    first time I've seen this happening at the file server.

    Server 2 is the domain controller.

    Server 1 is the file server.

    Users cannot log into Server 1 or map disk drives to file shares. Server 1
    has the following event log entries:

    Event Type: Error
    Event Source: NETLOGON
    Event Category: None
    Event ID: 5719
    Date: 5/22/2007
    Time: 5:01:14 PM
    User: N/A
    Computer: serv1
    Description:

    This may lead to authentication problems. Make sure that this computer is
    connected to the network. If the problem persists, please contact your
    domain administrator.

    ADDITIONAL INFO
    If this computer is a domain controller for the specified domain, it sets up
    the secure session to the primary domain controller emulator in the
    specified domain. Otherwise, this computer sets up the secure session to any
    domain controller in the specified domain.

    For more information, see Help and Support Center at
    http://go.microsoft.com/fwlink/events.asp.
    Data:
    0000: 17 00 02 c0 ...À

    Server 2 (the domain controller) has the following log entries:

    Event Type: Error
    Event Source: Kerberos
    Event Category: None
    Event ID: 4
    Date: 5/22/2007
    Time: 4:57:03 PM
    User: N/A
    Computer: serv2
    Description:
    The kerberos client received a KRB_AP_ERR_MODIFIED error from the server
    host/serv1.xxx.xxx.com. The target name used was cifs/serv1. This indicates
    that the password used to encrypt the kerberos service ticket is different
    than that on the target server. Commonly, this is due to identically named
    machine accounts in the target realm (xxx.xxxxxx), and the client realm.
    Please contact your system administrator.

    For more information, see Help and Support Center at
    http://go.microsoft.com/fwlink/events.asp


    followed by another log entry:

    Event Type: Error
    Event Source: NETLOGON
    Event Category: None
    Event ID: 5722
    Date: 5/22/2007
    Time: 5:11:37 PM
    User: N/A
    Computer: serv23
    Description:
    The session setup from the computer serv1 failed to authenticate. The
    name(s) of the account(s) referenced in the security database is serv1$.
    The following error occurred:
    Access is denied.

    For more information, see Help and Support Center at
    http://go.microsoft.com/fwlink/events.asp.
    Data:
    0000: 22 00 00 c0 "..À

    I'm not sure how to proceed.

    I've reviewed KB entries:
    http://support.microsoft.com/kb/321044/en-us



    http://support.microsoft.com/kb/913327/en-us



    http://support.microsoft.com/kb/823659/en-us



    http://support.microsoft.com/kb/885409/en-us



    but they don't really tell me how to proceed, expecially as I can't find a
    duplicate name and there is no reason for the authentication to suddenly
    fail.

    Both servers can ping the other, which indicates the the network adapters
    are functioning correctly. This configuration has been stable for several
    years. No "landmark" event stand out as a possible culprit.

    It is clear that the domain controller is rejecting the connection but I
    don't know why.

    Any suggestions?

    Regards,
    Jim





    Reply With Quote Reply With Quote
  2. 23-05-2007 #2
    Jim Guest

    Re: File server denied access by Domain Controller: Access is denied because of failure to authenticate **CORRECTION***


    "Jim" <nobody@nospam.edu> wrote in message
    news:ul1OS2QnHHA.3520@TK2MSFTNGP04.phx.gbl...
    > I'm having a problem with a file server authenticating with the domain
    > controller or allowing users in the domain to map a file share on the file
    > server. The configuration has been stable for several years; this is the
    > first time I've seen this happening at the file server.
    >
    > Server 2 is the domain controller.
    >
    > Server 1 is the file server.
    >
    > Users cannot log into Server 1 or map disk drives to file shares. Server
    > 1 has the following event log entries:
    >
    > Event Type: Error
    > Event Source: NETLOGON
    > Event Category: None
    > Event ID: 5719
    > Date: 5/22/2007
    > Time: 5:01:14 PM
    > User: N/A
    > Computer: serv1
    > Description:
    >
    > This may lead to authentication problems. Make sure that this computer is
    > connected to the network. If the problem persists, please contact your
    > domain administrator.
    >
    > ADDITIONAL INFO
    > If this computer is a domain controller for the specified domain, it sets
    > up the secure session to the primary domain controller emulator in the
    > specified domain. Otherwise, this computer sets up the secure session to
    > any domain controller in the specified domain.
    >
    > For more information, see Help and Support Center at
    > http://go.microsoft.com/fwlink/events.asp.
    > Data:
    > 0000: 17 00 02 c0 ...À

    The above message is incomplete. The correct message is:

    Event Type: Error
    Event Source: NETLOGON
    Event Category: None
    Event ID: 5719
    Date: 5/22/2007
    Time: 5:01:14 PM
    User: N/A
    Computer: serv2
    Description:
    This computer was not able to set up a secure session with a domain
    controller in domain xxx due to the following:
    The RPC server is unavailable.

    This may lead to authentication problems. Make sure that this computer is
    connected to the network. If the problem persists, please contact your
    domain administrator.

    ADDITIONAL INFO
    If this computer is a domain controller for the specified domain, it sets up
    the secure session to the primary domain controller emulator in the
    specified domain. Otherwise, this computer sets up the secure session to any
    domain controller in the specified domain.

    For more information, see Help and Support Center at
    http://go.microsoft.com/fwlink/events.asp.
    Data:
    0000: 17 00 02 c0 ...À

    Sorry. I goofed up the cut/paste.

    >
    > Server 2 (the domain controller) has the following log entries:
    >
    > Event Type: Error
    > Event Source: Kerberos
    > Event Category: None
    > Event ID: 4
    > Date: 5/22/2007
    > Time: 4:57:03 PM
    > User: N/A
    > Computer: serv2
    > Description:
    > The kerberos client received a KRB_AP_ERR_MODIFIED error from the server
    > host/serv1.xxx.xxx.com. The target name used was cifs/serv1. This
    > indicates that the password used to encrypt the kerberos service ticket is
    > different than that on the target server. Commonly, this is due to
    > identically named machine accounts in the target realm (xxx.xxxxxx), and
    > the client realm. Please contact your system administrator.
    >
    > For more information, see Help and Support Center at
    > http://go.microsoft.com/fwlink/events.asp
    >
    >
    > followed by another log entry:
    >
    > Event Type: Error
    > Event Source: NETLOGON
    > Event Category: None
    > Event ID: 5722
    > Date: 5/22/2007
    > Time: 5:11:37 PM
    > User: N/A
    > Computer: serv23
    > Description:
    > The session setup from the computer serv1 failed to authenticate. The
    > name(s) of the account(s) referenced in the security database is serv1$.
    > The following error occurred:
    > Access is denied.
    >
    > For more information, see Help and Support Center at
    > http://go.microsoft.com/fwlink/events.asp.
    > Data:
    > 0000: 22 00 00 c0 "..À
    >
    > I'm not sure how to proceed.
    >
    > I've reviewed KB entries:
    > http://support.microsoft.com/kb/321044/en-us
    >
    >
    >
    > http://support.microsoft.com/kb/913327/en-us
    >
    >
    >
    > http://support.microsoft.com/kb/823659/en-us
    >
    >
    >
    > http://support.microsoft.com/kb/885409/en-us
    >
    >
    >
    > but they don't really tell me how to proceed, expecially as I can't find a
    > duplicate name and there is no reason for the authentication to suddenly
    > fail.
    >
    > Both servers can ping the other, which indicates the the network adapters
    > are functioning correctly. This configuration has been stable for several
    > years. No "landmark" event stand out as a possible culprit.
    >
    > It is clear that the domain controller is rejecting the connection but I
    > don't know why.
    >
    > Any suggestions?
    >
    > Regards,
    > Jim
    >
    >
    >
    >
    >


    Reply With Quote Reply With Quote
  3. 24-05-2007 #3
    Jim Guest

    Re: File server denied access by Domain Controller: Access is denied because of failure to authenticate **CORRECTION***

    Sharing Solution::

    1. Remove file server from domain (add to a workgroup) via "my
    computer/properties"
    2. Use active directory/computers and users application to delete file
    server from computers container.
    3. Add file server back into domain.

    The cause of this problem has not been determined.


    "Jim" <nobody@nospam.edu> wrote in message
    news:O0nTu4QnHHA.3952@TK2MSFTNGP03.phx.gbl...
    >
    > "Jim" <nobody@nospam.edu> wrote in message
    > news:ul1OS2QnHHA.3520@TK2MSFTNGP04.phx.gbl...
    >> I'm having a problem with a file server authenticating with the domain
    >> controller or allowing users in the domain to map a file share on the
    >> file server. The configuration has been stable for several years; this is
    >> the first time I've seen this happening at the file server.
    >>
    >> Server 2 is the domain controller.
    >>
    >> Server 1 is the file server.
    >>
    >> Users cannot log into Server 1 or map disk drives to file shares. Server
    >> 1 has the following event log entries:
    >>
    >> Event Type: Error
    >> Event Source: NETLOGON
    >> Event Category: None
    >> Event ID: 5719
    >> Date: 5/22/2007
    >> Time: 5:01:14 PM
    >> User: N/A
    >> Computer: serv1
    >> Description:
    >>
    >> This may lead to authentication problems. Make sure that this computer is
    >> connected to the network. If the problem persists, please contact your
    >> domain administrator.
    >>
    >> ADDITIONAL INFO
    >> If this computer is a domain controller for the specified domain, it sets
    >> up the secure session to the primary domain controller emulator in the
    >> specified domain. Otherwise, this computer sets up the secure session to
    >> any domain controller in the specified domain.
    >>
    >> For more information, see Help and Support Center at
    >> http://go.microsoft.com/fwlink/events.asp.
    >> Data:
    >> 0000: 17 00 02 c0 ...À
    >
    > The above message is incomplete. The correct message is:
    >
    > Event Type: Error
    > Event Source: NETLOGON
    > Event Category: None
    > Event ID: 5719
    > Date: 5/22/2007
    > Time: 5:01:14 PM
    > User: N/A
    > Computer: serv2
    > Description:
    > This computer was not able to set up a secure session with a domain
    > controller in domain xxx due to the following:
    > The RPC server is unavailable.
    >
    > This may lead to authentication problems. Make sure that this computer is
    > connected to the network. If the problem persists, please contact your
    > domain administrator.
    >
    > ADDITIONAL INFO
    > If this computer is a domain controller for the specified domain, it sets
    > up the secure session to the primary domain controller emulator in the
    > specified domain. Otherwise, this computer sets up the secure session to
    > any domain controller in the specified domain.
    >
    > For more information, see Help and Support Center at
    > http://go.microsoft.com/fwlink/events.asp.
    > Data:
    > 0000: 17 00 02 c0 ...À
    >
    > Sorry. I goofed up the cut/paste.
    >
    >>
    >> Server 2 (the domain controller) has the following log entries:
    >>
    >> Event Type: Error
    >> Event Source: Kerberos
    >> Event Category: None
    >> Event ID: 4
    >> Date: 5/22/2007
    >> Time: 4:57:03 PM
    >> User: N/A
    >> Computer: serv2
    >> Description:
    >> The kerberos client received a KRB_AP_ERR_MODIFIED error from the server
    >> host/serv1.xxx.xxx.com. The target name used was cifs/serv1. This
    >> indicates that the password used to encrypt the kerberos service ticket
    >> is different than that on the target server. Commonly, this is due to
    >> identically named machine accounts in the target realm (xxx.xxxxxx), and
    >> the client realm. Please contact your system administrator.
    >>
    >> For more information, see Help and Support Center at
    >> http://go.microsoft.com/fwlink/events.asp
    >>
    >>
    >> followed by another log entry:
    >>
    >> Event Type: Error
    >> Event Source: NETLOGON
    >> Event Category: None
    >> Event ID: 5722
    >> Date: 5/22/2007
    >> Time: 5:11:37 PM
    >> User: N/A
    >> Computer: serv23
    >> Description:
    >> The session setup from the computer serv1 failed to authenticate. The
    >> name(s) of the account(s) referenced in the security database is serv1$.
    >> The following error occurred:
    >> Access is denied.
    >>
    >> For more information, see Help and Support Center at
    >> http://go.microsoft.com/fwlink/events.asp.
    >> Data:
    >> 0000: 22 00 00 c0 "..À
    >>
    >> I'm not sure how to proceed.
    >>
    >> I've reviewed KB entries:
    >> http://support.microsoft.com/kb/321044/en-us
    >>
    >>
    >>
    >> http://support.microsoft.com/kb/913327/en-us
    >>
    >>
    >>
    >> http://support.microsoft.com/kb/823659/en-us
    >>
    >>
    >>
    >> http://support.microsoft.com/kb/885409/en-us
    >>
    >>
    >>
    >> but they don't really tell me how to proceed, expecially as I can't find
    >> a duplicate name and there is no reason for the authentication to
    >> suddenly fail.
    >>
    >> Both servers can ping the other, which indicates the the network adapters
    >> are functioning correctly. This configuration has been stable for
    >> several years. No "landmark" event stand out as a possible culprit.
    >>
    >> It is clear that the domain controller is rejecting the connection but I
    >> don't know why.
    >>
    >> Any suggestions?
    >>
    >> Regards,
    >> Jim
    >>
    >>
    >>
    >>
    >>
    >
    >


    Reply With Quote Reply With Quote
« description for Event ID () in Source () cannot be found | Event ID 14, 29 and 24 w32Time »

Similar Threads

  1. When you run Dcpromo.exe on Windows 2008 to create a replica domain controller, you receive a message "The operation failed because: A domain controller could not be contacted ... "Access is denied."
    By John Wu in forum Active Directory
    Replies: 4
    Last Post: 15-05-2009, 11:48 AM
  2. Access Denied Joining Domain
    By dave@at in forum Active Directory
    Replies: 3
    Last Post: 07-10-2008, 09:28 PM
  3. Access Denied, Access Denied- like a broken record!
    By Sam in forum Vista Help
    Replies: 7
    Last Post: 26-04-2008, 10:24 AM
  4. Adding XP computer to Domain - access denied
    By dave@at in forum Active Directory
    Replies: 2
    Last Post: 15-01-2008, 10:05 PM
  5. Access Denied when trying to join a server to the domain
    By Agilent in forum Active Directory
    Replies: 2
    Last Post: 14-12-2007, 02:29 PM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules

Page generated in 1,713,282,481.11137 seconds with 17 queries