Solved

VPN/RAS server Netlogon Authentication failed error

Posted on 2009-05-08
1
578 Views
Last Modified: 2012-05-06
Hi all,

I am getting this error for two of my remote users on my windows VPN server.
They can tunnel in fine, and they are not aware of any issues on there side.

Just wanted to know why just those two user will create this error, and how to clean it.

Event Type:      Error
Event Source:      NETLOGON
Event Category:      None
Event ID:      5722
Date:            5/8/2009
Time:            9:26:03 AM
User:            N/A
Computer:      LYRA (my RAS servers)
Description:
The session setup from the computer RSD04_LT (laptop name) failed to authenticate. The name of the account referenced in the security database is RSD04_LT$.  The following error occurred:
Access is denied.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 22 00 00 c0               "..À    

Thanks

nirsky
0
Comment
Question by:STSDSE
1 Comment
 
LVL 13

Accepted Solution

by:
marine7275 earned 50 total points
Comment Utility
You need to recreate a new computer account. It appears to be a SID issue.
Info below pulled from:
http://help.lockergnome.com/windows2/Event-ID-5722-fails-authenticate--ftopict482541.html

The error, and subsequent 'bad behavior' are because the domain has a
new sid for the workstation, while the worstation is utilizing the old
sid. The fix is easy, however.

First, log on locally to the workstation, with the local admin
account. Then, remove the workstation from the domain by joining it
to a workgroup. The name of the workgroup doesn't matter, so long as
it removes itself from the domain. You should get a window saying
"Welcome to the xxxx workgroup!". You'll have to reboot the
workstation for the changes to take effect.

To ensure that the machine is removed from the domain, go to a
workstation or server that has the AD User and Computers snap-in.
Ensure that POS04 is not present. If it is, delete it. wait 12
minutes to ensure replication to all GC's, if you are in a large
environment.

Now, go back to the workstation, logging on as local administrator.
Join the machine back to the domain, utilizing an account that has
sufficient privileges.
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Suggested Solutions

Like many others, when I created a Windows 2008 RRAS VPN server, I connected via PPTP, and still do, but there are problems that can arise from solely using PPTP.  One particular problem was that the CFO of the company used a Virgin Broadband Wirele…
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now