?
Solved

Windows 2003 SBS with SP2 services lose authentication randomly and at reboot

Posted on 2010-08-13
10
Medium Priority
?
457 Views
Last Modified: 2013-11-10
Problem: after a reboot or after a random period of time the passwords for the accounts use to run services seem to corrupt, vanish, or change inexplicably. The password still shows to be there in the service properties but if the service stops, or is stopped, it will give a logon error when a start is attempted. When you put the password back in it is fine. If you restart right after you put the password in it restarts fine. Only after time...

This seems to only affect services that require a user account for Authentication. Being SBS it is of course a DC. It also hosts Exchange 2003 SP2, and the latest Blackberry Server Express. The Blackberry services are the ones that usually have the issue and are currently using the BESAdmin account specifically created for it. However it does the same thing using Administrator and other domain admin accounts. It does this on other services than Blackberry as well.

We cannot use Local System, or any other generic account unfortunately for any of the services. I did change those I could and we have no longer had any issues for those services. I cannot seem to find anyone else with this issue. Any ideas?

0
Comment
Question by:olygraham
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 2
10 Comments
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33430576
Those services should be using the BESAdmin account.  It should have the necessary rights on your DC and also have a password set to not expire.  It also needs to be granted permission to interact with the machine.  Do you see any events in your logs when this happens?

Justin
0
 
LVL 3

Expert Comment

by:comphil
ID: 33430648
That's a really odd one and no mistake.  So does the problem not happen if you use the BESAdmin account on the Blackberry services or am I misreading that bit?

A few things to try - set a service to use the Local System account, restart the service and then change it back to a user again - then restart the service once more.  Make sure that user's password is not set to expire.

Second, check Group Policy settings for Local Security settings.  One post on Technet refers to a similar problem and the fix appeared to be related to this ("someone modified my Group Policy settings to remove the accounts from the Local Security Settings").

My first port of call would be the Windows event log for any clues, particularly the System, Application and Security logs (the last is huge and may take a bit of trawling through to find anything that might be relevant assuming you know an approx. date and time when it last happened).
0
 
LVL 3

Expert Comment

by:comphil
ID: 33430650
Sorry Justin didn't mean to override your reply you got yours in while I was writing mine!
0
Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

 
LVL 31

Expert Comment

by:Justin Owens
ID: 33430662
No worries... Refresh strikes us all from time to time.
0
 

Author Comment

by:olygraham
ID: 33851371
done
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33851431
Author requests a refund but never answered either questions asked by the two participating Experts after almost two months.  If the Author wants to delete the Question, that is his/her business, but if he/she wants a refund of points, he/she should respond to the Experts.
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33853860
This seems to be the case of an Author trying to clear a Question he/she abandoned.  My first choice would be for the Author to interact with the Experts and actually resolve the Question.  My second choice would be for the Author to post the actual resolution and accept it as a 0 point answer.  My third choice would be to delete the Question with no refund, as we normally would an abandoned Question.
0
 

Accepted Solution

by:
olygraham earned 0 total points
ID: 33853954
Well - first - am unsure of how to just end the questions as I resolved it myself.  The issue really lies at the core of AD in the domain permissions
0
 
LVL 3

Expert Comment

by:comphil
ID: 33854602
Could you expand on exactly what the resolution to this problem was?  I am intrigued as I've never come across this particular problem before, it'd be useful to have it recorded here for anyone else who comes across the same problem.
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn about cloud computing and its benefits for small business owners.
As companies replace their old PBX phone systems with Unified IP Communications, many are finding out that legacy applications such as fax do not work well with VoIP. Fortunately, Cloud Faxing provides a cost-effective alternative that works over an…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question