?
Solved

OCS 2007 R2 auto sign in works, manual doesn't

Posted on 2010-01-06
5
Medium Priority
?
741 Views
Last Modified: 2013-11-29
So our OCS has been working pretty much properly since it was set up.  There's only one thing that's been bugging me--when we first set up the server, either automatic or manual sign in worked.

Now, only automatic sign in works.  If you "log out" of communicator while it's running & try to log back in, you're prompted for your sign-in address, username, and password.  

When using the appropriate sign-in address (know it's the right one due to the OCS management console), username (taken from the user's ADSIEdit principle name, & tried in the format DOMAIN\username, DOMAIN.COM\user, as well as username@domain.com) & password, we are still given an error that the password is incorrect.

Now, the only way short of logging out of windows & logging back in is to delete the HKCU\Software\Microsoft\Shared\UcClient keys for sign-in address & username.

Any ideas?
0
Comment
Question by:tnesupport
  • 2
  • 2
5 Comments
 
LVL 3

Expert Comment

by:JoltinJoe
ID: 26193179
I think automatic sign in can use Kerberos while manual sign-in probably uses NTLM.  I might check the lanman authentication level on the client and front-end OCS server to make sure they are compatible (for example, make sure the client is not set to LM or NTLM if the server is set to only NTLMv2).  This setting can be viewed at policy (local or group)\local policies\security options\network security:lan manager authentication level.
0
 
LVL 33

Expert Comment

by:Busbar
ID: 26194060
how did you configured your manual server settings, it should point to the pool name if you are running enterprise edition. I believe this is the issue.
0
 
LVL 1

Author Comment

by:tnesupport
ID: 26196485
busbar, I mean that when communicator hits AD it signs in fine (for example, when OCS opens at windows log in), yet when it prompts for my sign-in address & username & password (say for instance, after I log out of OCS), it doesn't work.

JoltinJoe, this what the direction I was thinking too..I'll give it a shot tomorrow--think Windows 7 might have something to do with this? (all the problem machines are Win 7)
0
 
LVL 33

Expert Comment

by:Busbar
ID: 26197582
nop both uses kerberos,
can you tell me any errors in the event viewer also enable communicator debugging as it will help
0
 
LVL 1

Accepted Solution

by:
tnesupport earned 0 total points
ID: 26237569
hrm, for some reason after checking all DC times, I found one was 4 hours off (in pacific, rather than eastern time zone)..after fixing this everything seems to be working ok.

Thanks anyway guys.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Case Summary: In this Article we introduce the new method to configure the default user profile using Automated profile copy with sysprep rather than the old ways such as the manual copy of a configured profile to default user profile Old meth…
Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question