Solved

Windows XP SP3 AND kerberos event ID4 when access Intranet application

Posted on 2009-07-03
6
715 Views
Last Modified: 2013-12-14
Here's the situtation - we have a web application running on a Server 2003 SP2 that client PCs connect to (Windows XP SP2 and 3). After a while (this can be several hours or just a couple) the user goes to input a new record in the app but they get prompted with a Windows Authentication box - after which they get kicked out of the app (Server unavailable or cannot display the page type of error). If they close IE and then go back in - all is fine. Corresponding with the Windows Authentication box is the Kerberos event ID4 error:

The kerberos client received a KRB_AP_ERR_MODIFIED error from the server host/websvr.domain.com.  This indicates that the password used to encrypt the kerberos service ticket is different than that on the target server. Commonly, this is due to identically named  machine accounts in the target realm (domain.COM), and the client realm.   Please contact your system administrator.

Its not an issue with duplicate client PC names on the network as its been happening on 4 different PCs for SURE (probably much more that I just haven't heard about it) - but 1 of them had been rebuilt recently so I disjoined it from the domain, deleted the name out of AD, DNS, WINS and then rejoined it with a DIFFERENT name and still the same issue.

The event log on the web server doesn't seem to show any corresponding error when the XP machines log the Kerberos event ID 4. Does anyone have any ideas as to how I can troubleshoot this?
0
Comment
Question by:ITGeneral
  • 3
  • 3
6 Comments
 
LVL 18

Expert Comment

by:awawada
ID: 24773835
can you add your event source?
0
 

Author Comment

by:ITGeneral
ID: 24774063
Not sure what you mean by event source but if you're referring to the Source: field in Event properties its Source: Kerberos   Event_ID: 4
0
 
LVL 18

Expert Comment

by:awawada
ID: 24774160
thanx
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
LVL 18

Expert Comment

by:awawada
ID: 24774174
0
 

Author Comment

by:ITGeneral
ID: 24786588
Well, I have the specific error that the client sees: HTTP Error 401.1 - Unauthorized: Access is denied due to invalid credentials.

Question is why does it lose the credentials? Apparently it worked fine over the weekend.
0
 

Accepted Solution

by:
ITGeneral earned 0 total points
ID: 24842680
Turns out that following up on the HTTP Error 401.1 error appears to be the way to go - that lead me to the following MS KB Article ID: 871179 and applied the "Workaround" portion of the article. Seems to have held out over the weekend thus far. Will update to advise if the fix is permanent.
0

Featured Post

Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to configure this in fortinet firewall 2 63
ip igmp join-group 8 39
IIS FTP Logging 10 39
Blacked by spamhaus? 26 69
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question