long login and no Exchange access

D

DC Gringo

Running XP Pro SP 1 on a Win2k AD domain with Exch 2003, I have a very long
login and can't get authenticated to Exchange ('logon information is
incorrect") and reentry fails, which I used to be able to.

Netdiag yields: "[FATAL] Kerberos does not have a ticket for
host/myMachine.company.net."

This is in my log:

(about 10 of these 599's)

Event Type: Failure Audit
Event Source: Security
Event Category: Detailed Tracking
Event ID: 599
Date: 1/31/2005
Time: 10:09:14 AM
User: domain\myuser
Computer: myMachine
Description:
Unprotection of auditable protected data.
Data Description: SQL Server Registration
Key Identifier: 34c2f449-1efc-4e25-a7a5-7b8836cebaec
Protected Data Flags: 0x0
Protection Algorithms: 3DES-168 , SHA1-160
Failure Reason: 0x8009000B


For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Warning
Event Source: Userenv
Event Category: None
Event ID: 1525
Date: 1/31/2005
Time: 9:56:31 AM
User: domain\myuser
Computer: myMachine
Description:
Windows has detected that Offline Caching is enabled on the Roaming Profile
share - to avoid potential profile corruption, Offline Caching must be
disabled on shares where roaming user profiles are stored.



For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Information
Event Source: RoamMgr
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:30 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RoamMgr ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.


Event Type: Information
Event Source: RegSrvc
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:29 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RegSrvc ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.
 
P

ptwilliams

This stinks of DNS problems ;-)

Also, some of the warnings are regarding roaming profiles - these warrant
fixing, but are a separate issue.

Before anything else, run netdiag /test:dns on the DCs.

If the results are not a pass, you should check that the DCs are pointing at
themselves, or another internal DNS server that is authorative for the AD
namespace, and that the (DNS) domain zone is configured to handle Dynamic
updates.

You also need to ensure that *all* internal domain members are pointing to
the internal DNS servers.

How many GCs do you have? You should have at least two -and at least one
per site. Exchange really depends on GCs.

--

Paul Williams

http://www.msresource.net/
http://forums.msresource.net/

Running XP Pro SP 1 on a Win2k AD domain with Exch 2003, I have a very long
login and can't get authenticated to Exchange ('logon information is
incorrect") and reentry fails, which I used to be able to.

Netdiag yields: "[FATAL] Kerberos does not have a ticket for
host/myMachine.company.net."

This is in my log:

(about 10 of these 599's)

Event Type: Failure Audit
Event Source: Security
Event Category: Detailed Tracking
Event ID: 599
Date: 1/31/2005
Time: 10:09:14 AM
User: domain\myuser
Computer: myMachine
Description:
Unprotection of auditable protected data.
Data Description: SQL Server Registration
Key Identifier: 34c2f449-1efc-4e25-a7a5-7b8836cebaec
Protected Data Flags: 0x0
Protection Algorithms: 3DES-168 , SHA1-160
Failure Reason: 0x8009000B


For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Warning
Event Source: Userenv
Event Category: None
Event ID: 1525
Date: 1/31/2005
Time: 9:56:31 AM
User: domain\myuser
Computer: myMachine
Description:
Windows has detected that Offline Caching is enabled on the Roaming Profile
share - to avoid potential profile corruption, Offline Caching must be
disabled on shares where roaming user profiles are stored.



For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Information
Event Source: RoamMgr
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:30 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RoamMgr ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.


Event Type: Information
Event Source: RegSrvc
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:29 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RegSrvc ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.
 
D

DC Gringo

PT,

Only one machine is having this problem. I am able to access the Exchange
server via other machines with integrated sign-on without problems. What
could be specific to my workstation?

_____
DC G

ptwilliams said:
This stinks of DNS problems ;-)

Also, some of the warnings are regarding roaming profiles - these warrant
fixing, but are a separate issue.

Before anything else, run netdiag /test:dns on the DCs.

If the results are not a pass, you should check that the DCs are pointing at
themselves, or another internal DNS server that is authorative for the AD
namespace, and that the (DNS) domain zone is configured to handle Dynamic
updates.

You also need to ensure that *all* internal domain members are pointing to
the internal DNS servers.

How many GCs do you have? You should have at least two -and at least one
per site. Exchange really depends on GCs.

--

Paul Williams

http://www.msresource.net/
http://forums.msresource.net/

Running XP Pro SP 1 on a Win2k AD domain with Exch 2003, I have a very long
login and can't get authenticated to Exchange ('logon information is
incorrect") and reentry fails, which I used to be able to.

Netdiag yields: "[FATAL] Kerberos does not have a ticket for
host/myMachine.company.net."

This is in my log:

(about 10 of these 599's)

Event Type: Failure Audit
Event Source: Security
Event Category: Detailed Tracking
Event ID: 599
Date: 1/31/2005
Time: 10:09:14 AM
User: domain\myuser
Computer: myMachine
Description:
Unprotection of auditable protected data.
Data Description: SQL Server Registration
Key Identifier: 34c2f449-1efc-4e25-a7a5-7b8836cebaec
Protected Data Flags: 0x0
Protection Algorithms: 3DES-168 , SHA1-160
Failure Reason: 0x8009000B


For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Warning
Event Source: Userenv
Event Category: None
Event ID: 1525
Date: 1/31/2005
Time: 9:56:31 AM
User: domain\myuser
Computer: myMachine
Description:
Windows has detected that Offline Caching is enabled on the Roaming Profile
share - to avoid potential profile corruption, Offline Caching must be
disabled on shares where roaming user profiles are stored.



For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Information
Event Source: RoamMgr
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:30 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RoamMgr ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.


Event Type: Information
Event Source: RegSrvc
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:29 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RegSrvc ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.
Click to expand...
 
P

ptwilliams

On the troublesome PC, run the following command(s):
nltest /dsgetdc:domain-name.com
nltest /sc_query:domain-name.com


Note. You'll need the support tools installed.

Are you sure that the TCP/IP configuration on this machine is correct? Have
you ruled out networking problems -bad NIC, dodgy cable, etc. You'd be
suprised how much you can do with ping...


--

Paul Williams

http://www.msresource.net/
http://forums.msresource.net/

PT,

Only one machine is having this problem. I am able to access the Exchange
server via other machines with integrated sign-on without problems. What
could be specific to my workstation?

_____
DC G

ptwilliams said:
This stinks of DNS problems ;-)

Also, some of the warnings are regarding roaming profiles - these warrant
fixing, but are a separate issue.

Before anything else, run netdiag /test:dns on the DCs.

If the results are not a pass, you should check that the DCs are pointing at
themselves, or another internal DNS server that is authorative for the AD
namespace, and that the (DNS) domain zone is configured to handle Dynamic
updates.

You also need to ensure that *all* internal domain members are pointing to
the internal DNS servers.

How many GCs do you have? You should have at least two -and at least one
per site. Exchange really depends on GCs.

--

Paul Williams

http://www.msresource.net/
http://forums.msresource.net/

Running XP Pro SP 1 on a Win2k AD domain with Exch 2003, I have a very long
login and can't get authenticated to Exchange ('logon information is
incorrect") and reentry fails, which I used to be able to.

Netdiag yields: "[FATAL] Kerberos does not have a ticket for
host/myMachine.company.net."

This is in my log:

(about 10 of these 599's)

Event Type: Failure Audit
Event Source: Security
Event Category: Detailed Tracking
Event ID: 599
Date: 1/31/2005
Time: 10:09:14 AM
User: domain\myuser
Computer: myMachine
Description:
Unprotection of auditable protected data.
Data Description: SQL Server Registration
Key Identifier: 34c2f449-1efc-4e25-a7a5-7b8836cebaec
Protected Data Flags: 0x0
Protection Algorithms: 3DES-168 , SHA1-160
Failure Reason: 0x8009000B


For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Warning
Event Source: Userenv
Event Category: None
Event ID: 1525
Date: 1/31/2005
Time: 9:56:31 AM
User: domain\myuser
Computer: myMachine
Description:
Windows has detected that Offline Caching is enabled on the Roaming Profile
share - to avoid potential profile corruption, Offline Caching must be
disabled on shares where roaming user profiles are stored.



For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Information
Event Source: RoamMgr
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:30 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RoamMgr ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.


Event Type: Information
Event Source: RegSrvc
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:29 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RegSrvc ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.
Click to expand...
 
D

DC Gringo

Pt,

I've had this problem for almost a month now and no one can figure it out.
Going out of my mind here. You will be a gentleman, a scholar, and savior
if you can help. Here are the results of the diagnostics you asked for from
the problematic workstation.

C:\Program Files\Support Tools>nltest /dsgetdc:blush:urCompany.net
DC: \\chq-share1129b.ourCompany.net
Address: \\10.0.0.95
Dom Guid: 3671000d-e11a-4bcf-bd76-3576f7de6d65
Dom Name: ourCompany.net
Forest Name: ourCompany.net
Dc Site Name: Default-First-Site-Name
Our Site Name: Default-First-Site-Name
Flags: GC DS LDAP KDC TIMESERV WRITABLE DNS_DC DNS_DOMAIN DNS_FOREST
CLO
SE_SITE
The command completed successfully

C:\Program Files\Support Tools>nltest /sc_query:blush:urCompany.net
Flags: 30 HAS_IP HAS_TIMESERV
Trusted DC Name \\chq-share1129b.ourCompany.net
Trusted DC Connection Status Status = 0 0x0 NERR_Success
The command completed successfully

C:\Program Files\Support Tools>


ptwilliams said:
On the troublesome PC, run the following command(s):
nltest /dsgetdc:domain-name.com
nltest /sc_query:domain-name.com


Note. You'll need the support tools installed.

Are you sure that the TCP/IP configuration on this machine is correct? Have
you ruled out networking problems -bad NIC, dodgy cable, etc. You'd be
suprised how much you can do with ping...


--

Paul Williams

http://www.msresource.net/
http://forums.msresource.net/

PT,

Only one machine is having this problem. I am able to access the Exchange
server via other machines with integrated sign-on without problems. What
could be specific to my workstation?

_____
DC G

ptwilliams said:
This stinks of DNS problems ;-)

Also, some of the warnings are regarding roaming profiles - these warrant
fixing, but are a separate issue.

Before anything else, run netdiag /test:dns on the DCs.

If the results are not a pass, you should check that the DCs are
Click to expand...
pointing
at
themselves, or another internal DNS server that is authorative for the AD
namespace, and that the (DNS) domain zone is configured to handle Dynamic
updates.

You also need to ensure that *all* internal domain members are pointing to
the internal DNS servers.

How many GCs do you have? You should have at least two -and at least one
per site. Exchange really depends on GCs.

--

Paul Williams

http://www.msresource.net/
http://forums.msresource.net/

Running XP Pro SP 1 on a Win2k AD domain with Exch 2003, I have a very long
login and can't get authenticated to Exchange ('logon information is
incorrect") and reentry fails, which I used to be able to.

Netdiag yields: "[FATAL] Kerberos does not have a ticket for
host/myMachine.company.net."

This is in my log:

(about 10 of these 599's)

Event Type: Failure Audit
Event Source: Security
Event Category: Detailed Tracking
Event ID: 599
Date: 1/31/2005
Time: 10:09:14 AM
User: domain\myuser
Computer: myMachine
Description:
Unprotection of auditable protected data.
Data Description: SQL Server Registration
Key Identifier: 34c2f449-1efc-4e25-a7a5-7b8836cebaec
Protected Data Flags: 0x0
Protection Algorithms: 3DES-168 , SHA1-160
Failure Reason: 0x8009000B


For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Warning
Event Source: Userenv
Event Category: None
Event ID: 1525
Date: 1/31/2005
Time: 9:56:31 AM
User: domain\myuser
Computer: myMachine
Description:
Windows has detected that Offline Caching is enabled on the Roaming Profile
share - to avoid potential profile corruption, Offline Caching must be
disabled on shares where roaming user profiles are stored.



For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Event Type: Information
Event Source: RoamMgr
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:30 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RoamMgr ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.


Event Type: Information
Event Source: RegSrvc
Event Category: None
Event ID: 0
Date: 1/31/2005
Time: 9:55:29 AM
User: N/A
Computer: myMachine
Description:
The description for Event ID ( 0 ) in Source ( RegSrvc ) cannot be found.
The local computer may not have the necessary registry information or
message DLL files to display messages from a remote computer. You may be
able to use the /AUXSOURCE= flag to retrieve this description; see Help and
Support for details. The following information is part of the event: Service
started.
Click to expand...
Click to expand...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

long login and can't get autheticated to Exchange 1
XP Pro SP3 crashes - Event Viewer log 7
NTDS ISAM event id 404 2
Userenv Event ID:1000 2
MsiInstaller wanting a do over 3
Black screen and auto reboot with this message in event viewer. 11
unable to write a shadowed Header Error EDB.chk 4
domain client login 5

Top