Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Unexplained logon (Kerberos) error

Status
Not open for further replies.
agentflicker

agentflicker

IS-IT--Management
May 8, 2001
38
FR
Hello all,

I hope someone can give me a lead on this as I'm completly stuck.

We have a parent/child domain setup. When I try to browse (logon) to the PDC in the child domain from the parent domain I get the following winpopup stop error:

"\\COMPUTER-PDC is not accessible
Logon failure: The target account name is incorrect."

This happens from any computer in the parent domain and from any logon. But I can logon to and browse any other PC in the child domain from the parent domain no problems.

If I logon to the child domain and then try logging onto the parent domain (ie in the reverse direction) I have no problems.

I used the "verify trusts" test button from both domains and they say that the trusts are fine.

I then turned Auditing on on the child domain and I got the following errors in the event log each time I attempted to logon to the child PDC.

Event Type: Failure Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 537
Date: 29/05/2001
Time: 3:36:29 PM
User: NT AUTHORITY\SYSTEM
Computer: COMPUTER-PDC
Description:
Logon Failure:
Reason: An unexpected error occurred during logon
User Name:
Domain:
Logon Type: 3
Logon Process: Kerberos
Authentication Package: Kerberos
Workstation Name: -

So I tested the Kerberos on both PDC's with netdiags and found no errors and (as far as I know) the Kerberos appears to be setup correctly.

Any ideas anyone?

Cheers.



 
Sort by date Sort by votes
Hi,
seems to me that the user doing the net time command has not enough priviledges. Standardusers are not allowed to change system time. Add the right to it using gpo.

thorsten
 
Upvote 0 Downvote
Hi,

I am having a very similar problem with W2K server ... when I try to log on to the DC at the console using the Admin account, I get the message:
"The system cannot log you on due to the following error:
There is a time difference between the Client and Server.
Please try again or consult your system administrator."
The only problems are:
1.) I am the system administrator
2.) The solution is to log on locally using the administrator an sync the time with the DC using "net time"
3.) I am using the admin account
4.) I am trying to log on to the DC

I am close to having no hair left over this one ... any ideas? Will post as new thread also.

Thanks,
B.
b00007@hotmail.com


 
Upvote 0 Downvote
Some further info on my orignal problem, I've found that I am able to logon to the PDC giving the errors from a NT4 PC from any domain with no problems. So it definitely seems to be a Kerberos problem.


Can anybody help?

agentflicker@yahoo.com
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MattM1975
  • Locked
  • Question
Domain Admin Logon 1
Replies
2
Views
199
ADB100
ADB100
DeepuM
  • Locked
  • Question
Web Response returned Web Exception : The underlying connection was closed error | Simphony & QS
Replies
0
Views
324
DeepuM
DeepuM
johan_1212
  • Locked
  • Question
AVG Antivirus Error
Replies
0
Views
103
johan_1212
johan_1212
DrB0b
  • Locked
  • Question
RDWeb server getting hit with odd logon requests....
Replies
1
Views
204
DrB0b
DrB0b
KnowItAllmost
  • Locked
  • Question
IIS 8.5 Throws Server Error 500.19 and error code: 0x80070021 SOLVED
Replies
0
Views
200
KnowItAllmost
KnowItAllmost

Part and Inventory Search

Sponsor

Back
Top