Exchange 2003 Event 8270 and Event 8022
- From: Mario Carbajal <Mario Carbajal@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 9 Apr 2007 13:26:03 -0700
Domain is comprised of one root domain, with several child domains, and the
exchange server housed in the root domain. This network is not fully routed,
and the problem appears in one domain which only has access to the forest
root, but not the other child domain.
Event Log Entries:
Event Type: Error
Event Source: MSExchangeAL
Event Category: LDAP Operations
Event ID: 8022
Date: 4/9/2007
Time: 1:03:29 PM
User: N/A
Computer: EXCHSRV1
Description:
LDAP Modify on directory child-dc1.child-domain.root-domain.com for entry
'<GUID=42CFE00E0D61254399D83077D8D4485E>' was unsuccessful with error:[0x32]
Insufficient Rights [ 00002098: SecErr: DSID-03150A45, problem 4003
(INSUFF_ACCESS_RIGHTS), data 0
]. DC=child-domain,DC=root-domain,DC=com
For more information, click http://www.microsoft.com/contentredirect.asp.
_______________________
Event Type: Error
Event Source: MSExchangeAL
Event Category: LDAP Operations
Event ID: 8270
Date: 4/9/2007
Time: 1:03:29 PM
User: N/A
Computer: EXCHSRV1
Description:
LDAP returned the error [32] Insufficient Rights when importing the
transaction
dn: <GUID=42CFE00E0D61254399D83077D8D4485E>
changetype: Modify
showInAddressBook:add:CN=All Users,CN=All Address Lists,CN=Address Lists
Container,CN=MyOrgName,CN=...
: CN=Default Global Address List,CN=All Global Address Lists,CN=Address
Lists Cont...
mail:john.smith@xxxxxxxxxxxxxxx
textEncodedORAddress:c=US;a= ;p=MyOrgName;o=Exchange;s=Smith;g=John;
proxyAddresses:SMTP:john.smith@xxxxxxxxxxxxxxx
: X400:c=US;a= ;p=MyOrgName;o=Exchange;s=Smith;g=John;
: smtp:john.smith@xxxxxxxxxxxxxxx
msExchPoliciesIncluded:add:{DD96AC9A-9511-40C3-B8E0-E6AED332E570},{26491CFC-9E50-4857-861B-0CB8DF22B5D7}
msExchUserAccountControl:0
msExchALObjectVersion:51
objectGUID:42CFE00E0D61254399D83077D8D4485E
-
DC=child-domain,DC=root-domain,DC=com
For more information, click http://www.microsoft.com/contentredirect.asp.
_________________________________
Event Type: Warning
Event Source: MSExchangeAL
Event Category: Address List Synchronization
Event ID: 8168
Date: 4/9/2007
Time: 1:03:29 PM
User: N/A
Computer: EXCHSRV1
Description:
Could not modify the object: 'CN=John
Smith,OU=DeptContainerEmp,OU=DeptContainer,OU=Location,OU=CompName,DC=child-domain,DC=root-domain,DC=com'. DC=child-domain,DC=root-domain,DC=com
For more information, click http://www.microsoft.com/contentredirect.asp.
____________________________________
My problem is that new accounts do not get stamped by RUS with e-mail
addresses for either contacts or user accounts. I am using one test account
in an attempt to isolate the issue, but I have not made any progress.
Things I have checked:
CHILDDOMAIN\Exchange Domain Servers (Members): Blank. Same in child domains,
but is this correct?
CHILDDOMAIN\Exchange Domain Severs (MemberOf): CHILDDOMAIN\Exchange
Enterprise Servers, CHILDDOMAIN\Pre-Windows 2000 Compatible Access
CHILDDOMAIN\Exchange Enterprise Servers (Members): ROOTDOMAIN\EXCHSRV1, Then
an Exchange Domain Servers group of each child domain and the problem domain.
I thought I had a permission problem, so I ran setup /domainprep on the
child domain, but the problem still persists.
I all RUS entries configured to never run, except for the RUS for the
problem child-domain. Accounts can be created and mailboxes stamped by RUS
in other domains, but not this one.
Any help resolving this problem would be appreciated.
.
- Follow-Ups:
- Re: Exchange 2003 Event 8270 and Event 8022
- From: Bharat Suneja [MVP]
- Re: Exchange 2003 Event 8270 and Event 8022
- Prev by Date: Re: OWA images
- Next by Date: Re: OWA images
- Previous by thread: OWA images
- Next by thread: Re: Exchange 2003 Event 8270 and Event 8022
- Index(es):
Relevant Pages
|
