Solved

New-TestCASConnectivityuser password error

Posted on 2009-07-08
4
1,344 Views
Last Modified: 2012-05-07
Hello All,
We are trying to monitor Exchange 2007 with the new native management pack which came with SCOM 2007.  One of the issues we have come across is when executing the new-testcasconnectivvityuser script on one of the mailbox clusters, we get the following error:

ClientAccessServer     :
Scenario               : Reset Credentials
ScenarioDescription    : Reset automated credentials for the Client Access test
                          user on Mailbox server S8KXMBV1.grupo.cm.es.
PerformanceCounterName :
Result                 : Failure
MailboxServer          : S8KXMBV1.grupo.cm.es
StartTime              : miércoles, 08, 07, 2009 13:21:20
Latency                : 00:00:00.2652136
SecureAccess           : True
Error                  : [Microsoft.Exchange.Monitoring.CasHealthStorageErrorEx
                         ception]: An error occurred while trying  to access ma
                         ilbox S8KXMBV1.grupo.cm.es on behalf of user grupo.cm.
                         es\CAS_a5c721419e234ddf

                          Additional information:
                          [Microsoft.Exchange.Data.Directory.ADOperationExcepti
                         on]: Active Directory operation failed on S8KCMGR1.gru
                         po.cm.es. This error is not retriable. Additional info
                         rmation: Unable to update the password. The value prov
                         ided for the new password does not meet the length, co
                         mplexity, or history requirements of the domain.
                         Active directory response: 0000052D: SvcErr: DSID-031A
                         11E5, problem 5003 (WILL_NOT_PERFORM), data 0
                          Inner error [System.DirectoryServices.Protocols.Direc
                         toryOperationException]: The server cannot handle dire
                         ctory requests.
UserName               : CAS_a5c721419e234ddf
VirtualDirectoryName   :
Url                    :
UrlType                : Unknown
EventType              : Error
Port                   : 0
ConnectionType         : Plaintext

An error occurred while trying  to access mailbox S8KXMBV1.grupo.cm.es on behal
f of user grupo.cm.es\CAS_a5c721419e234ddf

 Additional information:
 [Microsoft.Exchange.Data.Directory.ADOperationException]: Active Directory ope
ration failed on S8KCMGR1.grupo.cm.es. This error is not retriable. Additional
information: Unable to update the password. The value provided for the new pass
word does not meet the length, complexity, or history requirements of the domai
n.
Active directory response: 0000052D: SvcErr: DSID-031A11E5, problem 5003 (WILL_
NOT_PERFORM), data 0
 Inner error [System.DirectoryServices.Protocols.DirectoryOperationException]:
The server cannot handle directory requests.
Update test user permissions on:  S8KXMBV2.grupo.cm.es
Control-Break to quit or Enter to continue:

I would seem to be pretty straight forward except for the fact that in this particular domain, our password policy is four characters, non-complex, remember once.  Any help would be appreciated.
LC-J


0
Comment
Question by:MereelSkirata
  • 2
  • 2
4 Comments
 
LVL 15

Expert Comment

by:wwwally
ID: 24844265
I guess the user for the mom test mailbox account does not meet complexity requirements of you domain.
So change the password  of the account to a more complex one if you got this error on initial setup.

I haven't seen this error yet when the cmd is reseting the password but you can solve this by:
If you receive alerts that the cmdlet is not successfully resetting the passwords, you can fix the problem by rerunning the New-TestCasConnectivityUser.ps1 script on the Mailbox server.

Regards,
Walter
http://weblogwally.spaces.live.com
0
 

Author Comment

by:MereelSkirata
ID: 24847071
Thanks Wally,
We tried that and still get the same error.  A quick note: we still have Windows 2000 DCs in the domain,so its possible that maybe this is affecting the exchange enviornment.  The password policy for the domain is four characters changing every 42 days and enforce complex passwords is disabled.
LC-J
0
 
LVL 15

Expert Comment

by:wwwally
ID: 24852786
Maybe the complexity is not the problem but the password history, have a look at that.
Try setting it to 0 just as a test.
Regards,
Walter
http://weblogwally.spaces.live.com
0
 

Accepted Solution

by:
MereelSkirata earned 0 total points
ID: 24853031
Wally, after taking a look at this, it appears to be an issue with the SAM database on a Windows 2008 domain controller.  Once we get a solution for this, I´ll post it.  The interesting part of this will be whether or not this would have occurred with Windows 2003 DCs
Cheers,
LC-J
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Powershell Command for Distribution Lists 2 32
Exchange 2013 DL hack 4 32
Flush end users Deleted Items via PowerShell 2 25
Exchange 2007 6 17
Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question