Greencore
asked on
Authz Logon Failures with no User Name, Domain Name, Source Network Address or Source Port
Hi there,
Across our network I seem to be getting numerous of these errors - I have pasted details below:
Logon Failure:
Reason: Account locked out
User Name:
Domain:
Logon Type: 3
Logon Process: Authz
Authentication Package: Kerberos
Workstation Name: ABC23S003
Caller User Name: ABC23S003$
Caller Domain: CS
Caller Logon ID: (0x0,0x3E7)
Caller Process ID: 1068
Transited Services: -
Source Network Address: -
Source Port: -
I have looked at the PID relating to this which is svchost and hence encompasses multiple services eg audio service, browser, etc etc all of which are running just fine, and can (and have been) stopped and started.
The information above was pasted from a DC called abc23s003 - hence it is reporting this error into it's own logs, I do however have exactly the same errors appearing on multiple Member servers also.
The above event is preceded by the following:
Service Ticket Request:
User Name: ABC23S003$@CS.GCG.NET
User Domain: CS.GCG.NET
Service Name: host/abc23s003.cs.gcg.net
Service ID: -
Ticket Options: 0x40810000
Ticket Encryption Type: -
Client Address: 127.0.0.1
Failure Code: 0x12
Logon GUID: -
Transited Services: -
I have googled about but have come up with no solutions.
Any suggestions?
Across our network I seem to be getting numerous of these errors - I have pasted details below:
Logon Failure:
Reason: Account locked out
User Name:
Domain:
Logon Type: 3
Logon Process: Authz
Authentication Package: Kerberos
Workstation Name: ABC23S003
Caller User Name: ABC23S003$
Caller Domain: CS
Caller Logon ID: (0x0,0x3E7)
Caller Process ID: 1068
Transited Services: -
Source Network Address: -
Source Port: -
I have looked at the PID relating to this which is svchost and hence encompasses multiple services eg audio service, browser, etc etc all of which are running just fine, and can (and have been) stopped and started.
The information above was pasted from a DC called abc23s003 - hence it is reporting this error into it's own logs, I do however have exactly the same errors appearing on multiple Member servers also.
The above event is preceded by the following:
Service Ticket Request:
User Name: ABC23S003$@CS.GCG.NET
User Domain: CS.GCG.NET
Service Name: host/abc23s003.cs.gcg.net
Service ID: -
Ticket Options: 0x40810000
Ticket Encryption Type: -
Client Address: 127.0.0.1
Failure Code: 0x12
Logon GUID: -
Transited Services: -
I have googled about but have come up with no solutions.
Any suggestions?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.