Solved

New-TestCASConnectivityuser password error

Posted on 2009-07-08
4
1,334 Views
Last Modified: 2012-05-07
Hello All,
We are trying to monitor Exchange 2007 with the new native management pack which came with SCOM 2007.  One of the issues we have come across is when executing the new-testcasconnectivvityuser script on one of the mailbox clusters, we get the following error:

ClientAccessServer     :
Scenario               : Reset Credentials
ScenarioDescription    : Reset automated credentials for the Client Access test
                          user on Mailbox server S8KXMBV1.grupo.cm.es.
PerformanceCounterName :
Result                 : Failure
MailboxServer          : S8KXMBV1.grupo.cm.es
StartTime              : miércoles, 08, 07, 2009 13:21:20
Latency                : 00:00:00.2652136
SecureAccess           : True
Error                  : [Microsoft.Exchange.Monitoring.CasHealthStorageErrorEx
                         ception]: An error occurred while trying  to access ma
                         ilbox S8KXMBV1.grupo.cm.es on behalf of user grupo.cm.
                         es\CAS_a5c721419e234ddf

                          Additional information:
                          [Microsoft.Exchange.Data.Directory.ADOperationExcepti
                         on]: Active Directory operation failed on S8KCMGR1.gru
                         po.cm.es. This error is not retriable. Additional info
                         rmation: Unable to update the password. The value prov
                         ided for the new password does not meet the length, co
                         mplexity, or history requirements of the domain.
                         Active directory response: 0000052D: SvcErr: DSID-031A
                         11E5, problem 5003 (WILL_NOT_PERFORM), data 0
                          Inner error [System.DirectoryServices.Protocols.Direc
                         toryOperationException]: The server cannot handle dire
                         ctory requests.
UserName               : CAS_a5c721419e234ddf
VirtualDirectoryName   :
Url                    :
UrlType                : Unknown
EventType              : Error
Port                   : 0
ConnectionType         : Plaintext

An error occurred while trying  to access mailbox S8KXMBV1.grupo.cm.es on behal
f of user grupo.cm.es\CAS_a5c721419e234ddf

 Additional information:
 [Microsoft.Exchange.Data.Directory.ADOperationException]: Active Directory ope
ration failed on S8KCMGR1.grupo.cm.es. This error is not retriable. Additional
information: Unable to update the password. The value provided for the new pass
word does not meet the length, complexity, or history requirements of the domai
n.
Active directory response: 0000052D: SvcErr: DSID-031A11E5, problem 5003 (WILL_
NOT_PERFORM), data 0
 Inner error [System.DirectoryServices.Protocols.DirectoryOperationException]:
The server cannot handle directory requests.
Update test user permissions on:  S8KXMBV2.grupo.cm.es
Control-Break to quit or Enter to continue:

I would seem to be pretty straight forward except for the fact that in this particular domain, our password policy is four characters, non-complex, remember once.  Any help would be appreciated.
LC-J


0
Comment
Question by:MereelSkirata
  • 2
  • 2
4 Comments
 
LVL 15

Expert Comment

by:wwwally
ID: 24844265
I guess the user for the mom test mailbox account does not meet complexity requirements of you domain.
So change the password  of the account to a more complex one if you got this error on initial setup.

I haven't seen this error yet when the cmd is reseting the password but you can solve this by:
If you receive alerts that the cmdlet is not successfully resetting the passwords, you can fix the problem by rerunning the New-TestCasConnectivityUser.ps1 script on the Mailbox server.

Regards,
Walter
http://weblogwally.spaces.live.com
0
 

Author Comment

by:MereelSkirata
ID: 24847071
Thanks Wally,
We tried that and still get the same error.  A quick note: we still have Windows 2000 DCs in the domain,so its possible that maybe this is affecting the exchange enviornment.  The password policy for the domain is four characters changing every 42 days and enforce complex passwords is disabled.
LC-J
0
 
LVL 15

Expert Comment

by:wwwally
ID: 24852786
Maybe the complexity is not the problem but the password history, have a look at that.
Try setting it to 0 just as a test.
Regards,
Walter
http://weblogwally.spaces.live.com
0
 

Accepted Solution

by:
MereelSkirata earned 0 total points
ID: 24853031
Wally, after taking a look at this, it appears to be an issue with the SAM database on a Windows 2008 domain controller.  Once we get a solution for this, I´ll post it.  The interesting part of this will be whether or not this would have occurred with Windows 2003 DCs
Cheers,
LC-J
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
This video discusses moving either the default database or any database to a new volume.

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now