Solved

Network Administrator

Posted on 2009-05-15
3
887 Views
Last Modified: 2012-05-07
We have a domain controller that is a DC, GC and print server. We noticed that the CPU usage is very high. It goes up to 100 % then it drops down to 20% then back to 85%...etc.  The file that is consuming the most CPU is LSASS.exe.

Any help would be appriciated.
0
Comment
Question by:rogermendieta
3 Comments
 
LVL 6

Expert Comment

by:0791882310
ID: 24397437
lsass.exe is a security manager for windows (I.E... windows logons and what not)... so it shouldn't be taking up any resources... unless your running a terminal server.... in other cases lsass.exe is a trojan... make sure where the file in running from... the file location should be [root drive]\[windows root]\system32\...

i would recommend doing some virus scans and what not
0
 
LVL 18

Accepted Solution

by:
Andrej Pirman earned 500 total points
ID: 24397459
Here is what Microsoft says about it and provides a hotfix:
http://support.microsoft.com/kb/842382

It is also very likely that your AD is corrupted. You may try to restore it from backup, or try some AD repair tools available, like "ntdsutil".
0
 
LVL 1

Expert Comment

by:rwetmore
ID: 24411767
You might want to try checking out this blog from MS.  It also has some good tips on troubleshooting LSASS.exe high CPU utilization.

http://blogs.technet.com/askds/archive/2009/04/16/conficker-causes-lsass-to-consume-cpu-time-on-domain-controllers.aspx

Hopefully your client don't have Confiker.
0

Featured Post

Forrester Webinar: xMatters Delivers 261% ROI

Guest speaker Dean Davison, Forrester Principal Consultant, explains how a Fortune 500 communication company using xMatters found these results: Achieved a 261% ROI, Experienced $753,280 in net present value benefits over 3 years and Reduced MTTR by 91% for tier 1 incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
*** Hardware Malfunction Dell T610 7 126
Windows Update not working 12 184
DHCP scope restore question Server 2003 to 2012R2 6 101
Server 2008 Not services listed 23 51
Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Know what services you can and cannot, should and should not combine on your server.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question