alan2938
asked on
Once a week most of my domain gets locked out of OWA for approx 36 hours - "The local security authority cannot be contacted"
I am a new IT administrator and am having trouble getting all the users in my small company to stay connected to our new Exchange 2003 server through OWA. Llike clockwork every Saturday night all my Blackberry users get the message shown in the code snippet...
When I try to validate their accounts again either through the Blackberry web login or directly from their phone they are unable to do so until Monday morning. If I try to log into Outlook Web Access directly using their credentials I get a message stating "The Local Security Authority Cannot Be Contacted". I have read through everything I can find in this forum, Google, and Microsoft and nothing seems to be of assistance. When this happens I am still able to log into webmail myself, as are any user user I put into AD. But most other users, all in separate security groups, cannot log in. NET Logon is running on the Exchange Server and both my DCs (two running a Windows2003 domain environment). Restarting services or entire machines doesn't help, demoting and promoting DCs doesn't help. Nothing seems to make sense.
There is no scheduled maintenance on the network or Exchange server and nothing in the event logs showing any error or information at the time. Then just as strangely as it happened, everyone is able to get back in OWA Monday morning like nothing ever happened.
Any ideas?
When I try to validate their accounts again either through the Blackberry web login or directly from their phone they are unable to do so until Monday morning. If I try to log into Outlook Web Access directly using their credentials I get a message stating "The Local Security Authority Cannot Be Contacted". I have read through everything I can find in this forum, Google, and Microsoft and nothing seems to be of assistance. When this happens I am still able to log into webmail myself, as are any user user I put into AD. But most other users, all in separate security groups, cannot log in. NET Logon is running on the Exchange Server and both my DCs (two running a Windows2003 domain environment). Restarting services or entire machines doesn't help, demoting and promoting DCs doesn't help. Nothing seems to make sense.
There is no scheduled maintenance on the network or Exchange server and nothing in the event logs showing any error or information at the time. Then just as strangely as it happened, everyone is able to get back in OWA Monday morning like nothing ever happened.
Any ideas?
This email account is no longer accessible by your BlackBerry device. This issue is likely caused by a recent change to the password used to access this account.
To resume receiving email from this address, login to your BlackBerry Internet Service account and verify the password is correct for this email account.
Email Account Information:
Email Account: myuser@mydomain.com
Email: myuser@mydomain.com
UserID: mydomainaccount
Sent via BlackBerry from [my user's provider]
It sounds like there might be a time of day restriction on one of your service accounts. Have you checked the IUSR_ and IWAM_ accounts for Logon restrictions?
ASKER
Just checked, they are permitted to logon to all computers 24/7.
Do you have a full backup running on Saturday night?
ASKER
Yes, but our backup runs every night of the week.
Do you have a full backup running on Saturday night?
Sorry about the double post. So you have a full backup running every night of the week. How about on-line maintenance of the mailbox stores. That goes every night at 1-5?
ASKER
Database maintenance is run daily from 1am to 5am, mailbox store maintenance is run daily at midnight, and full text indexing is run daily at 3am.
We only have 35 mailboxes so database maintenance is always completed rather quickly.
We only have 35 mailboxes so database maintenance is always completed rather quickly.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.