Re: 1030 / 40961 / 673 on DC - MVP wanted
- From: "Wills World" <wills@xxxxxxxxxxxx>
- Date: Sun, 7 May 2006 14:43:04 -0400
That is the one I found and I think the Hotfix there may have solved my
problem.. I'll post back
Details:
Although the KB article does not match exactly it is a close match to most
of the symptoms.
***
MS Article ID : 885887
Last Review : April 27, 2006
Revision : 1.3
You cannot access network resources after you try to log on to a Windows XP
Service Pack 2-based computer
Symptoms:
If you log on to a Microsoft Windows XP Service Pack 2 (SP2)-based computer
before a domain controller on your network is available, you may experience
one or more of the following symptoms:
.. User-specific Kerberos Ticket-Granting Tickets (TGT) are not renewed.
.. Requests for new TGTs are not accepted if the TGT has reached its last
permissible renew date after you install Windows XP SP2.
.. Authentication to network resources may unexpectedly quit after the
computer has been locked.
.. Programs that use Delegation may unexpectedly quit.
.. You cannot resolve the problem by purging the TGT and requesting a new
TGT.
.. You find an event similar to the following event in the system event log:
Event Type: Warning
Event Source: LSASRV
Event Category: SPNEGO (Negotiator)
Event ID: 40961
Date: 10/27/2004
Time: 1:00:50 PM
User: N/A
Computer: COMPUTER
Description: The Security System could not establish a secured connection
with the server ldap/DC01.corp.com/corp.com@xxxxxxxxx No authentication
protocol was available.
*****
To Get the Hot Fix Mentioned in the KB Article:
I called 1-800-MICROSOFT (1-800-642-7676)and followed the telephone prompts
to get a HotFix. I got transferred to a real person who simply asked what
Hot Fix I needed and then they emailed it to me with a password.
I have installed the Hot Fix on one machine and will post back the results.
---
"wickydog" <wickydog@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:D0953690-8027-4109-B80A-7126D94D3054@xxxxxxxxxxxxxxxx
See if it can helps:
http://support.microsoft.com/default.aspx?scid=kb;en-us;885887
"Wills World" wrote:
Windows 2003 SP1 Domain 3 DC's
Windows XP SP2
BTW: I have already consulted www.eventid.net great resource but not
helpful enough in this case. I can't seem to find anyone with any useful
advice
Details of Problem:
Event logs of XP Clients are reporting the events 1030 (USERENV) and
40961
(LSASRV/SPNEGO) only when the users machine is logged in but locked.
(After
they go home) The events seem to happen about every two hours until they
unlock and then the problem stops again.
Domain Controller Log reports event 673 Failure With no
Username/Domain/Service Name/Service ID
Ticket Options: 0x2
Client Address: (matches the clients ip address)
Failure Code 0X20 (Ticket Expired?)
BTW: I have already consulted www.eventid.net great resource but not
helpful enough in this case.
Can you explain what might be happening here and possible solutions to
the
problem?
.
- References:
- 1030 / 40961 / 673 on DC - MVP wanted
- From: Wills World
- 1030 / 40961 / 673 on DC - MVP wanted
- Prev by Date: integration of new servers on a network...
- Next by Date: Re: error message when attempting to add user,windows 2003 server active directory
- Previous by thread: 1030 / 40961 / 673 on DC - MVP wanted
- Next by thread: Re: Can ADAM do this?
- Index(es):
Relevant Pages
|
