Re: Can't install ADAM master on XP SP2

On Sep 18, 8:26 am, "Lee Flight" <l...@xxxxxxxxxxxxxxx> wrote:
Hi

you might want to check the forceguest setting in registry

http://technet2.microsoft.com/windowsserver/en/library/1d709278-ee2a-...

Also enabling "Audit Logon events" for success and failure in the local
security
policy of the WinXP should give you more info in the security event log.

Lee Flight

<compurhyt...@xxxxxxxxx> wrote in message

news:1190062997.592029.286010@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx



I've been frustrated by 2 machines now where installing an ADAM master
instance has failed. Here are the details:

OS: XP Pro SP2
Workgroup Mode
Installing with local admin creds

Here are the steps:

1. I install the ADAM SP1 software
2. I create a new instance:
a. give it an instance name
b. choose my ports (LDAP and SSL)
c. Select NETWORK SERVICE as the service account
- Here I am warned that remote connections may not be able
to authenticate. This is fine with me since this is a stand-alone box
d. Tell it that the currently logged on user (mybox\myadmin)
should be an ADAM admin
e. I give it a new partition to create (DC=MYPARTITION,DC=LOCAL)
f. The instance installs successfully (or so it seems)

Then I try to connect with ADAM ADSI-EDIT as the logged-in user I get:

"The login attempt failed"

I then try to bind with LDP.EXE and I get an error that ldap_bind_s()
failed. "Invalid Credentials". I get the same error if I try "bind
with credentials" and give it the creds of my admin user.

Any thoughts on why I can't bind to a newly created ADAM instance
locally, even when the instance install says it was successful?

The kicker is that I tried this on another XP pro machine 2 weeks ago
and it went smoothly. This has failed twice for me today however on
two different machines.

Mike
Mike- Hide quoted text -

- Show quoted text -

This is strange. I set forceguest to 0 and I turned logon failure
auditing on and I get the errors I've pasted below (bottom of post).
The fact that the process name is a bunch of garbled characters is a
bit troubling. Is there a potential that a recent Windows update is
incompatible with ADAM? The logon failure subcodes are nowhere to be
found when doing Google searches - and I mean nowhere (Web, Groups,
Froogle, Blogs, etc)

So I guess I have two additional questions:
1. Has anyone heard of a Windows Update breaking ADAM? Both these
machines are totally up to date.
2. What is the latest version of the ADAM redistributable? I'm using
the ADAM SP1 package at the following link. Is there a more recent
version?

https://www.microsoft.com/downloads/details.aspx?FamilyId=9688F8B9-1034-4EF6-A3E5-2A2A57B5C8E4&displaylang=en

--- Logon Errors Below (Notice funky "Logon Process" name) ---


AFTER ADSI EDIT CONNECT ATTEMPT:

Event Type: Failure Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 537
Date: 9/18/2007
Time: 2:05:09 PM
User: NT AUTHORITY\SYSTEM
Computer: SRTEST07
Description:
Logon Failure:
Reason: An error occurred during logon
User Name: identix
Domain: SRTEST07
Logon Type: 3
Logon Process: 8'|Ôú¤
Authentication Package: NTLM
Workstation Name: SRTEST07
Status code: 0xC000006D
Substatus code: 0xA4FC50

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


AFTER LDP BIND ATTEMPT:

Event Type: Failure Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 537
Date: 9/18/2007
Time: 2:21:43 PM
User: NT AUTHORITY\SYSTEM
Computer: SRTEST07
Description:
Logon Failure:
Reason: An error occurred during logon
User Name: identix
Domain: SRTEST07
Logon Type: 3
Logon Process: 8'|Ôú°
Authentication Package: NTLM
Workstation Name: SRTEST07
Status code: 0xC000006D
Substatus code: 0xB0FC50

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.



.

Relevant Pages

  • Re: Interactive login event if 528 not appearing in sbs security event log for domain users
    ... shows event id 528 logon type 2 interactive logon for the ... Account Logon Events (Success & Failure) ... Policy Change ...
    (microsoft.public.windows.server.sbs)
  • RDP Client access logging
    ... How do I get the Terminal Server to log an event when an RDP client attempts ... Regardless of success or failure status. ... The only log entries I can see now are the same as normal logon / logoff ...
    (microsoft.public.windows.terminal_services)
  • Hard Disk Not Mounting
    ... I want to port WinCE ... -USBD:OpenPipe success, hPipe = D039E210 ... HidParse: 'Preparing to Allocate memory ... DEVICQueuedPipe::CheckForDoneTransfers - failure on TD 0xd05858a0, ...
    (microsoft.public.windowsce.platbuilder)
  • Re: Is it really true that NTFS is secure?
    ... > and failure auditing starting with "Audit Account Management," and also try ... > The account Group got put back in the Administrator group again. ... > The logon to account: ...
    (microsoft.public.security)
  • Re: 4 users logging in 39,250 times a day?!
    ... Success auditing is good from a security perspective. ... If you have 300,000 logon failures and they are continuing you basically don't have a lot to worry about, someone is cracking your server by brute force and your password complexity policy is stopping them. ... IF however you have 300,000 logon failures and they suddenly stop, just after a success event for the same process/IP, you have a MAJOR PROBLEM, your server is toast, owned by someone else and you have the proof of it in your logs. ... SBS remote support services. ...
    (microsoft.public.windows.server.sbs)