VBscript Logon Error

I've been using the attached logon script to provide information in AD for each user.  The script runs properly for some, but errors upon logon for others.  Here's the error:

Line: 5
Char: 1
Error: 0x80005000
Code:80005000
Source:null

Is this a problem with permissions within Active Directory for the users that are having the script fail?  If so, what would be the fix?

Thanks
''POPULATES AD WITH USER LOGON INFO IN DESCRIPTION FIELD
 
Set objSysInfo = CreateObject("ADSystemInfo")
 
Set objUser = GetObject("LDAP://" & objSysInfo.UserName)
Set objComputer = GetObject("LDAP://" & objSysInfo.ComputerName)
 
strMessage = objUser.CN & " authenticated on " & objComputer.CN & " " & Now & ".  MAC addresses: " & MACAddresses(".")
 
objUser.Description = strMessage
objUser.SetInfo
 
objComputer.Description = strMessage
objComputer.SetInfo
 
function MACAddresses(strComputer)
	dim objWMI, colItems, objItem
	dim strMac
	strMac=""  
	Set objWMI = GetObject("winmgmts:\\" & strComputer &  "\root\CIMV2")  
	Set colItems = objWMI.ExecQuery("SELECT * FROM Win32_NetworkAdapterConfiguration where IPEnabled=TRUE",,48)
	For Each objItem in colItems
		if objItem.MACAddress<>"" then strMac=strMac & objItem.MACAddress & vbCrLf
	Next  
	MACAddresses = strMac
end function

Open in new window

CommCatzAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

MikealclCommented:
Normal users do  not have access to update active directory by default if that is what you are trying to do.

You would have to delegate that permission to update those fields.

http://www.windowsecurity.com/articles/Implementing-Active-Directory-Delegation-Administration.html


0
CommCatzAuthor Commented:
I have already delegated write permission to both the computer and user object's description field.  I must be missing another delegation permission.
0
LauraEHunterMVPCommented:
Does the update fail for users who are or who have ever been members of a protected group such as Domain Admins, Account Operators, or Server Operators?  If so, this behavior is by design; the following links describe the issue and some potential workarounds:

http://msmvps.com/blogs/ulfbsimonweidner/archive/2005/05/29/49659.aspx
http://support.microsoft.com/kb/817433
0
CommCatzAuthor Commented:
The script fails for primarily users that are just members of the domain users group with no other elevated permission history.  It seems to run fine for domain admins and users who have full control to particular OUs within AD.
0
CommCatzAuthor Commented:
Anyone else?  This is getting really frustrating, I don't understand why it errors for some and not others.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Databases

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.