troubleshooting Question

Kerberos Errors in Windows 2003 Server Domain

Avatar of killyman
killyman asked on
Windows NetworkingInternet Protocols
22 Comments2 Solutions1727 ViewsLast Modified:
I'm getting a whole bunch of Kerberos errors in the last four days in our Event Viewer (System folder).

We have a single DC running Windows Server 2003 Standard and it is acting as a file server and running Exchange 2003 and AD. We

have about 50 workstations. Our server is running DNS, but our firewall is doing the DHCP.

We also have RealVNC running on all the workstations so that I can remotely log into them from the server. To log into one of the

workstations, I open the IE browser on the server and type http://computername:5800 into the address field and then I log in via a Java

page. A problem has arisen lately with the RealVNC log in process on some computers which I believe is directly related to the

kerberos errors.

For example, if I try to log into one of our workstations named AICH019 (http://aich019:5800) I get redirected to AICH021. If I ping both

computernames via CMD on the server (ping aich019 & ping aich021), I get the same IP address results for both. But, if I go on each

workstation and do ipconfig /all from the command prompt, I get seperate IP addresses. The kerberos error below indicates that the

two workstations in question are potentially "identically named machine accounts in the target realm."
_________________________________________________________
Event Type:      Error
Event Source:      Kerberos
Event Category:      None
Event ID:      4
Date:            4/2/2004
Time:            10:36:40 AM
User:            N/A
Computer:      TMIC
Description:
The kerberos client received a KRB_AP_ERR_MODIFIED error from the server AICH021$.  The target name used was

cifs/AICH019.aich.local. This indicates that the password used to encrypt the kerberos service ticket is different than that on the

target server. Commonly, this is due to identically named  machine accounts in the target realm (AICH.LOCAL), and the client realm.  

Please contact your system administrator.
_________________________________________________________

I also have additional kerberos errors coming up with other workstations "in conflict".

Here is another error related to the workstation named AICH019.
_________________________________________________________
Event Type:      Error
Event Source:      NETLOGON
Event Category:      None
Event ID:      5722
Date:            4/2/2004
Time:            1:51:30 AM
User:            N/A
Computer:      TMIC
Description:
The session setup from the computer AICH019 failed to authenticate. The name(s) of the account(s) referenced in the security

database is AICH019$.  The following error occurred:
Access is denied.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 22 00 00 c0               "..À    
_________________________________________________________



I would very much appreciate any insight into what is the cause and solution of this issue.

Thanks,

Clark



Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 2 Answers and 22 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 2 Answers and 22 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros