Sharepoint 2007 Scheduler task using bad login
Posted on 2011-05-09
Hi, on the security logs on my DC, have a logon failure, this is an admin login that I disabled.
I found some stuff ( scheduling ) written with his access, clear all the stuff .
but one still remain, I susspect Sharepoint to be responsible for the bad login but not sure where to look, I know the task is running every day at 5pm using the disable login.
it come from the central administration server.
in the log, the autentication package is ntlm ( NTLM is configure in sharepoint )
I look at the timer job definition, but unable to look for a job running at 5pm with the specific login.
where can I look ?