Re: Prompted for credentials. Invalid ticket?

Tech-Archive recommends: Fix windows errors by optimizing your registry

This is such a strange issue and it seems like I run into it a lot. I would
hate to have my users run into it, especially when they already are perturbed
about just having had to change their network password, AGAIN. Is there any
chance Microsoft will fix it?

--
Jim

"Les Connor [SBS Community Member - SBS M" wrote:

Hi Mikael,

Perhaps some of this will help:

(the following references an issue with McAffee not updating .. not your
issue but you get the idea from the symptoms).

By default, Windows 2000/Win XP will store up to ten different sets of
cached credentials in the protected storage. Once ten sets of credentials
are in the store, the credential caching engine will reuse the oldest set
of cached credentials. This is the cause of the logon failures the remote
users are experiencing. The user's cached credentials are not being
invalidated, they are overwritten and therefore missing from the stored set
of cached credentials during the logon process. This is due to a change to
the AutoUpdate service in the McAfee Anti-Virus software that affects the
way the service logs onto the machine in order to download updates. Prior
to Windows 2000 Service Pack 3, the AutoUpdate service logged on as a
service rather than interactively. Because the service was not using an
interactive logon, the credentials used by the AutoUpdate server were not
cached in the credentials cached. However, the AutoUpdate service now uses
an interactive logon method and therefore the credentials are now cached
using the normal password caching mechanism. After examining a machine from
a user with failing cached credentials, it was determined that the full set
of ten credential entries was filled with the stored credentials of the
AutoUpdate service. Later testing verified this was in fact overwriting the
full set of ten cached credentials and therefore overwriting the user's
stored credentials.


Try this:

On Windows XP there is the credential manager that if there are stored
credentials that would give the behavior that you are describing.
1. While logged on as the user bring up Control Panel, and bring up User
Accounts.
2. On the Advanced tab, click the Manage Passwords button.


There might be some credentials that were saved there. You can remove
those.


On Windows 2000, for mapped drives you should just need to logoff/logon and
it will prompt for credentials again to remap the drive.


or......

Cached domain logon information
http://support.microsoft.com/default.aspx?scid=kb;EN-US;172931

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\Current Version\Winlogon\

ValueName: CachedLogonsCount
Data Type: REG_SZ
Values: 0 - 50

A value of 0 would clear all cached credentials - you would need to reset
the value after clearing.

--
Les Connor [SBS Community Member - SBS MVP]
-----------------------------------------------------------
SBS Rocks !
----------------------

.

Quantcast