RE: event id 1411

From: Eddie <Eddie@xxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 11 Jul 2007 05:16:01 -0700

When I run replmom i can replicate with no issues.
b04114f9-5ec4-4de3-8883-ced4fcb186c6._msdcs.abc.com this is from a dc that
was demoted and rebuilt. i removed it from AD using dcpromo i ran metadat
cleanup after with no issues.
see below.

Event Type: Error
Event Source: NTDS Replication
Event Category: DS RPC Client
Event ID: 1411
Date: 7/11/2007
Time: 7:50:39 AM
User: NT AUTHORITY\ANONYMOUS LOGON
Computer: Server1
Description:
Active Directory failed to construct a mutual authentication service
principal name (SPN) for the following domain controller.

Domain controller:
b04114f9-5ec4-4de3-8883-ced4fcb186c6._msdcs.abc.com

The call was denied. Communication with this domain controller might be
affected.

Additional Data
Error value:
8589 The DS cannot derive a service principal name (SPN) with which to
mutually authenticate the target server because the corresponding server
object in the local DS database has no serverReference attribute.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

"Ryan Hanisco" wrote:

Can you post the fulll text of the error?

--
Ryan Hanisco
MCSE, MCTS: SQL 2005, Project+
Chicago, IL

Remember: Marking helpful answers helps everyone find the info they need
quickly.

"Eddie" wrote:

i had to rebuild a dc today. i gave it the same name and ip address since
there are allot of devices point to it for ldap queries(smtp gateways,
copiers etc) i removed all traces of the server after it was demoted by
running the ntdsutil. i have can i resolve the server principle error. i have
ran dcdiag and netdiag and both were clean. i went inside adsiedit and the
spn it listed correctly.

Follow-Ups:
- Re: event id 1411
  - From: Harj

Prev by Date: Re: backup and restore GPO
Next by Date: Re: Active Directory: ldap_simple_bind_s error codes
Previous by thread: Active Directory: ldap_simple_bind_s error codes
Next by thread: Re: event id 1411
Index(es):
- Date
- Thread

Relevant Pages

Can anyone explain this error code
... Active Directory failed to construct a mutual authentication service ... principal name for the following domain controller. ... 8589 The DS cannot derive a service principal name (SPN) with which to ... mutually authenticate the target server because the corresponding server ...
(microsoft.public.win2000.active_directory)
Can anyone help with this error
... Active Directory failed to construct a mutual authentication service ... principal name for the following domain controller. ... 8589 The DS cannot derive a service principal name (SPN) with which to ... mutually authenticate the target server because the corresponding server ...
(microsoft.public.windows.server.active_directory)
Repeat event 1411 NTDS Replication error please help.........
... Active Directory failed to construct a mutual authentication service ... principal name for the following domain controller. ... 8589 The DS cannot derive a service principal name (SPN) with which to ... mutually authenticate the target server because the corresponding ...
(microsoft.public.windows.server.active_directory)
Event ID 1411
... There were lingering objects that I just could not remove. ... principal name for the following domain controller. ... 8589 The DS cannot derive a service principal name (SPN) with which to ... mutually authenticate the target server because the corresponding server ...
(microsoft.public.windows.server.networking)
RE: replication help!!!!!!!!!!!!!!!!
... What you have is a replication issue, ... > principal name (SPN) for the following domain controller. ... > mutually authenticate the target server because the corresponding server ...
(microsoft.public.windows.server.general)