kerberos errors windows xp but not on windows 2003 or windows 7
Hi,
We have an application that runs on a server and you manage it from an app on your desktop. Last Thursday turned on Native Mode in our Windows 2008 R2 domain and on the following Tuesday a user could not log into the app. We reboot the server and than no one could. We tested installing the sofware on a Windows 2003 server and Windows 7 and it worked, but if we install on a XP box it does not.
On the client the error message is "Lost connection with host machine - Source object cannot be converted to the destination type since it does not support all the required interfaces"
On the app server the error is Event ID 4625.
Thanks.
We have an application that runs on a server and you manage it from an app on your desktop. Last Thursday turned on Native Mode in our Windows 2008 R2 domain and on the following Tuesday a user could not log into the app. We reboot the server and than no one could. We tested installing the sofware on a Windows 2003 server and Windows 7 and it worked, but if we install on a XP box it does not.
On the client the error message is "Lost connection with host machine - Source object cannot be converted to the destination type since it does not support all the required interfaces"
On the app server the error is Event ID 4625.
Thanks.
Darius Ghassem
Could be the software is running NTLM.
ASKER
Why does it work on Windows 7 and Windows 2003? It only XP that seems to have the issue and it was working for months.
What software? This could be a software issue not a Windows issue
ASKER
Points to that all OS is supported
http://www.solimarsystems.com/SPDE_Overview.php
Have you contacted the software company for support? Do you have an older version?
http://www.solimarsystems.com/SPDE_Overview.php
Have you contacted the software company for support? Do you have an older version?
ASKER
I'm working with the vendor but we are not making progress. Are there any differences is how kerberos works between XP and Windows 2003 or Windows 7?
Windows 2003 and XP use the same version so there should be no difference here.
Try this
http://support.microsoft.com/kb/244474
Try this
http://support.microsoft.com/kb/244474
ASKER
If I do a packet capture we see the follow Kerberos errors where it is using the "Service Account" for the server name.
Kerberos request from my_pc:
KDC_REQ_BODY
Realm: Domain.COM
Server Name (NT 4.0 style name (MS specific)): ServerX
Kerberos response from DomainController:
MSG Type: KRB-ERROR (30)
error_code: KRB5KDC_ERR_S_PRINCIPAL_UN
Server Name (NT 4.0 style name (MS specific)): ServerX
[CONNECTION RESET]
Kerberos request from my_pc:
KDC_REQ_BODY
Realm: Domain.COM
Server Name (NT 4.0 style name (MS specific)): ServerX
Kerberos response from DomainController:
MSG Type: KRB-ERROR (30)
error_code: KRB5KDC_ERR_S_PRINCIPAL_UN
Server Name (NT 4.0 style name (MS specific)): ServerX
[CONNECTION RESET]
Using NTLM. Reset the computer account
ASKER
Are you talking about a password reset? We renamed the old your account and created a new one with the same name and still had the same issue.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Anything I need to be concerned about when doing this? Do I need to re-add it to the domain?
Thanks for all your help.
Thanks for all your help.
Yes you will need to re-add back to the domain