Re: One user cannot access Server Shares/connect to Exchange server
- From: computertechct@xxxxxxxxx
- Date: 26 Oct 2006 11:09:15 -0700
The roaming profile is not the crust of the issue. This user account
will not connect to the server shares due to security downgrade.
Precisely, why outlook will not connect to the Exchange server. The
errors logs are all in the OP.
This user has been using roaming profiles for a while and nothing has
changed in terms of her permissions on the server.
The Kereberos or NTLM authentication is not working or sometihng to
that effect.
Robert L [MVP - Networking] wrote:
If it is not DNS issue, I would check the permission. This search result may help,
windows cannot locate server copy of your roaming profile Windows cannot locate the server copy of your roaming profile and is attempting to log you on with your local profile. Changes to the profile will not be ...
www.chicagotech.net/winissues/roamingprofile1.htm
Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
<computertechct@xxxxxxxxx> wrote in message news:1161880911.685872.120220@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Hi,
I am hoping one of the experts on here can point me to the right
solution.
We have SBS and 10 users. Roaming profiles on the server. DHCP, DNS all
on SBS
DNS in DHCP scope is pointing to the SBS, on ISP DNS. I can safely rule
out DNS as the problem
One user can log into her workstation, but can only login after a long
while because windows cannot find the roaming profile and is trying to
login with a local copy.
It looks like somehow her account will not authenticate to the DC to
access shares & exchange.
We tried logging into another workstation with the same user account.
Same behavior. Same errors. However other users can login and check
their email and access network shares with out a problem. This makes me
conclude that there is something about her account that is messing
things up. I did not change anything on her account in AD. I disabled
trendmicro services on the workstation and that did not change a thing.
She can use webmail to check her email? That works fine. I am stomped.
Please help.
Here are all the logs related to this.
Application log
Event ID: 1521
Windows cannot locate the server copy of your roaming profile and is
attempting to log you on with your local profile. Changes to the
profile will not be copied to the server when you logoff. Possible
causes of this error include network problems or insufficient security
rights. If this problem persists, contact your network administrator.
DETAIL - The system detected a possible attempt to compromise
security. Please ensure that you can contact the server that
authenticated you.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
SYSTEM log:
Event Type: Warning
Event Source: Kerberos
Event Category: None
Event ID: 10
Date: 10/26/2006
Time: 10:16:16 AM
User: N/A
Computer: MFAW010
Description:
The kerberos subsystem is having problems fetching tickets from your
domain controller using the UDP network protocol. This is typically
due to network problems. Please contact your system administrator.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 5e 00 00 c0 ^..À
Event Type: Warning
Event Source: LSASRV
Event Category: SPNEGO (Negotiator)
Event ID: 40960
Date: 10/26/2006
Time: 11:43:31 AM
User: N/A
Computer: MFAW010
Description:
The Security System detected an attempted downgrade attack for server
exchangeRFR/xxx. The failure code from authentication protocol
Kerberos was "There are currently no logon servers available to service
the logon request.
(0xc000005e)".
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Event Type: Warning
Event Source: LSASRV
Event Category: SPNEGO (Negotiator)
Event ID: 40961
Date: 10/26/2006
Time: 11:43:31 AM
User: N/A
Computer: MFAW010
Description:
The Security System could not establish a secured connection with the
server exchangeRFR/xxx. No authentication protocol was available.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Event Type: Warning
Event Source: LSASRV
Event Category: SPNEGO (Negotiator)
Event ID: 40960
Date: 10/26/2006
Time: 11:43:34 AM
User: N/A
Computer: MFAW010
Description:
The Security System detected an attempted downgrade attack for server
cifs/xxx. The failure code from authentication protocol Kerberos was
"There are currently no logon servers available to service the logon
request.
(0xc000005e)".
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Event Type: Warning
Event Source: LSASRV
Event Category: SPNEGO (Negotiator)
Event ID: 40961
Date: 10/26/2006
Time: 11:43:34 AM
User: N/A
Computer: MFAW010
Description:
The Security System could not establish a secured connection with the
server cifs/xxx. No authentication protocol was available.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Event Type: Warning
Event Source: LSASRV
Event Category: SPNEGO (Negotiator)
Event ID: 40960
Date: 10/26/2006
Time: 11:44:21 AM
User: N/A
Computer: MFAW010
Description:
The Security System detected an attempted downgrade attack for server
exchangeAB/xxx. The failure code from authentication protocol Kerberos
was "There are currently no logon servers available to service the
logon request.
(0xc000005e)".
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Event Type: Warning
Event Source: LSASRV
Event Category: SPNEGO (Negotiator)
Event ID: 40961
Date: 10/26/2006
Time: 11:44:21 AM
User: N/A
Computer: MFAW010
Description:
The Security System could not establish a secured connection with the
server exchangeAB/mfas001.mfaltd.com. No authentication protocol was
available.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Event Type: Warning
Event Source: LSASRV
Event Category: SPNEGO (Negotiator)
Event ID: 40960
Date: 10/26/2006
Time: 11:45:11 AM
User: N/A
Computer: MFAW010
Description:
The Security System detected an attempted downgrade attack for server
exchangeAB/xxx The failure code from authentication protocol Kerberos
was "There are currently no logon servers available to service the
logon request.
(0xc000005e)".
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
.
- References:
- One user cannot access Server Shares/connect to Exchange server
- From: computertechct
- One user cannot access Server Shares/connect to Exchange server
- Prev by Date: Re: WSUS Sync Problem - BITS needs range protocol header - ASPNET?
- Next by Date: Re: DNS quit working
- Previous by thread: Re: One user cannot access Server Shares/connect to Exchange server
- Next by thread: Repartition Server without Reinstall?
- Index(es):
Relevant Pages
|
