Re: Kerberos error on Windows XP Pro SP2 connecting to a domain resource

Hello Eric,

Sorry, this was for another posting. Did not realize that it was send out.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm

This was the solution to our problem:

Alternatively, there is a workaround available by setting the
DisableDomainCreds to 1 to stop store domain credentials.

Key Location: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa
Value Name: DisableDomainCreds
Value Type: REG_DWORD
Values: 0 or 1
Default Value: 0
Description: A setting of 0 allows domain credentials to be stored in
the Credential Manager, a value of 1 has the meaning of 'do not store
domain credentials'.

"Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
news:ff16fb668a5278ca446034a2724e@xxxxxxxxxxxxxxxxxxxxxxx

Hello Eric,

Check this out if not done:
http://www.eventid.net/display.asp?eventid=14&eventno=4189&source=Ker
beros&phase=1
Give the user account admin rights and try this:
http://www.tweakxp.com/article37352.aspx
Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and
confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
We are getting the following on an Windows XP SP2 (LSASRV.dll is at
version 5.1.2600.3249) it is trying to connect to a server resource
in a Windows 2003 active directory.

I really don't understand why the XP client would be caching any
passwords on it. This was posted before on this newsgroup but it
was never resolved.

The Microsoft directions don't make sense because you can only
change local passwords on the client.

Thanks in advance.
Eric Sabo
--------------------------------------------------------------------
--
--------------------------------------------------------------------
--
----------
Event Type: Warning

Event Source: Kerberos

Event Category: None

Event ID: 14

Date: 2/22/2008

Time: 7:24:43 AM

User: N/A

Computer: XXXXXXXX

Description:

There were password errors using the Credential Manager. To remedy,
launch

the Stored User Names and Passwords control panel applet, and
reenter the

password for the credential domain\XXXXXXXXXXXXX.



.

Relevant Pages

  • Re: Migrating Unix accounts into Active Directory
    ... According to this articles it is not possible to migrate the passwords: ... Disclaimer: This posting is provided "AS IS" with no warranties, ... They only give information about creating new unix accounts ...
    (microsoft.public.windows.server.active_directory)
  • Re: Cannot see the setting under GPO to disable IE password save
    ... Disclaimer: This posting is provided "AS IS" with no warranties, ... Components\Internet Explorer "Do not allow Autocomplete to Save ...
    (microsoft.public.windows.server.active_directory)
  • Re: Finding out Users Passwords
    ... You can not find the cleartext password, passwords are stored only as a hash. ... Meinolf Weber ... Disclaimer: This posting is provided "AS IS" with no warranties, ...
    (microsoft.public.windows.server.active_directory)
  • RE: Remote Web Access Credentials stored where?
    ... > site with another User credentials in your client computer. ... The client in question is not yet joined to the SBS domain. ... Under Advanced is a Manage Passwords button which opens ... I can login as any SBS ...
    (microsoft.public.windows.server.sbs)
  • Re: hosted exchange - cached password
    ... staffer's recommendation. ... open Outlook without inputting credential. ... credentials item. ... In the "Stored user names and passwords" window, ...
    (microsoft.public.exchange.clients)