How to fix event ID 566 from GCS

how do i fix the following issue with event id 566 see more info below

Event Type:      Success Audit
Event Source:      Security
Event Category:      Directory Service Access
Event ID:      566
Date:            4/27/2010
Time:            10:02:24 AM
User:            LATHROP\CHPRTHP01$
Computer:      CHGCSHP01
Description:
Object Operation:
       Object Server:      DS
       Operation Type:      Object Access
       Object Type:      domainDNS
       Object Name:      DC=ci,DC=lathrop,DC=ca,DC=us
       Handle ID:      -
       Primary User Name:      CHGCSHP01$
       Primary Domain:      LATHROP
       Primary Logon ID:      (0x0,0x3E7)
       Client User Name:      CHPRTHP01$
       Client Domain:      LATHROP
       Client Logon ID:      (0x1,0x482C6644)
       Accesses:      Control Access
                  
       Properties:
      Control Access
            Replication Synchronization
      domainDNS

       Additional Info:      
       Additional Info2:      
       Access Mask:      0x100


For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
TonyEFAsked:
Who is Participating?
 
Glen KnightConnect With a Mentor Commented:
OK, those 2 messages are both very different.

First one is related to DNS, this could be the IP configuration of the server is incorrect (could you post the results of NETDIAG and DCDIAG please)

Also check the DNS properties in the DNS console to ensure that dynamic updates are allowed and run scavenging on the froward lookup zone.

The second one is related to schema versions and mismatch in permissions and confidentiality flag.  as per: http://support.microsoft.com/kb/922836

Using ADSI Edit, right click on ADSI Edit and select Connect to, under select a well known naming contect pull down the box and select Schema click OK.
Expand Schema and then Schema again.
Find the CN=UnixUserPassword (it will be towards the end) and double click on it.
Locate te attibute called search flags and highlight it, then click Edit.

If the value is set to 128 then this is conifidential, change this value to 0

BE CAREFUL WHEN MAKING CHANGES TO THE SCHEMA AND ONLY MAKE THE CHANGES I HAVE ADVISED ABOVE.
0
 
Glen KnightConnect With a Mentor Commented:
This is an audit of a sucesful Directory Services Access
there is nothing wrong with this event
0
 
TonyEFAuthor Commented:
But this shows a failure .. the messages seem to be slitely different please see below..

Event Type:      Failure Audit
Event Source:      Security
Event Category:      Directory Service Access
Event ID:      566
Date:            4/27/2010
Time:            10:58:28 AM
User:            WEBSERVER$
Computer:      CHGCSHP01
Description:
Object Operation:
       Object Server:      DS
       Operation Type:      Object Access
       Object Type:      dnsNode
       Object Name:      DC=webserver,DC=ci.lathrop.ca.us,CN=MicrosoftDNS,CN=System,DC=ci,DC=lathrop,DC=ca,DC=us
       Handle ID:      -
       Primary User Name:      CSHP01$
       Primary Domain:      LATHROP
       Primary Logon ID:      (0x0,0x3E7)
       Client User Name:      WEBSERVER$
       Client Domain:      LATHROP
       Client Logon ID:      (0x1,0x4A29779F)
       Accesses:      Write Property
                  
       Properties:
      ---
            Default property set
                  dnsRecord
                  dNSTombstoned
      dnsNode

       Additional Info:      
       Additional Info2:      
       Access Mask:      0x20

------------------------------    2 -------------------------
Event Type:      Failure Audit
Event Source:      Security
Event Category:      Directory Service Access
Event ID:      566
Date:            4/27/2010
Time:            10:33:38 AM
User:            BESAdmin
Computer:      CHGCSHP01
Description:
Object Operation:
       Object Server:      DS
       Operation Type:      Object Access
       Object Type:      user
       Object Name:      CN=Tom Ferg,OU=IT_Test,DC=ci,DC=lathrop,DC=ca,DC=us
       Handle ID:      -
       Primary User Name:      CHGCSHP01$
       Primary Domain:      LATHROP
       Primary Logon ID:      (0x0,0x3E7)
       Client User Name:      BESAdmin
       Client Domain:      LATHROP
       Client Logon ID:      (0x1,0x495950EF)
       Accesses:      Control Access
                  
       Properties:
      ---
            Default property set
                  unixUserPassword
      user

       Additional Info:      
       Additional Info2:      
       Access Mask:      0x100




0
 
Glen KnightCommented:
sorry the attribut is searchFlags (with no space)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.