We help IT Professionals succeed at work.
Get Started

Logon Process: Advapi Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0

Flipp
Flipp asked
on
8,330 Views
Last Modified: 2013-12-06
In our SBS event viewer I noticed a large number of security failures for the above logon process and authentication package:
*****
Logon Failure:
       Reason:      Unknown user name or bad password
       User Name:      666
       Domain:       
       Logon Type:      3
       Logon Process:      Advapi
       Authentication Package:      MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
       Workstation Name:      SERVER
       Caller User Name:      SERVER$
       Caller Domain:      DOMAIN
       Caller Logon ID:      (0x0,0x3E7)
       Caller Process ID:      12592
       Transited Services:      -
       Source Network Address:      -
       Source Port:      -
*****

The Username changes each attempt.

I initially thought that this was spawning from my SERVER, but after diagnosing the event log, I am thinking that it is a workstation on the domain that is attempting to connect.

Can anyone confirm this for me and suggest a strategy on how to find the workstation in question?
We currently only have AV installed on all using CA eTrust, but could look at Pest Patrol which is a part of the suite.
Comment
Watch Question
CERTIFIED EXPERT
Distinguished Expert 2018
Commented:
This problem has been solved!
Unlock 1 Answer and 7 Comments.
See Answer
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE