Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.
Course Of The Month
Become a Premium Member and unlock a new, free course in leading technologies each month.
Solved
The system detected a possible attempt to compromise security
Posted on 2012-12-22
I receive the following error message on the computers that are connected to the SBS Server about once a day. Any ideas what this might be?
"S:\ is not accessible.
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you."
This will disconnect all of the network drives and printers. Then if I wait about 4-5 minutes everything will come back and work fine. All of the client computers are using MSE for AV.
"S:\ is not accessible.
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you."
This will disconnect all of the network drives and printers. Then if I wait about 4-5 minutes everything will come back and work fine. All of the client computers are using MSE for AV.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3
2
2- +2
11 Comments
Looks like something is trying to look at an S drive. Do you have anything running that is pointing to an S drive?
Worth looking in msconfig maybe or looking for anything odd in task manager.
Worth looking in msconfig maybe or looking for anything odd in task manager.
We have a network program that runs off of the s:\ drive.
I've looked in both msconfig as well as task manager. Nothing I could see out of the ordinary.
I've looked in both msconfig as well as task manager. Nothing I could see out of the ordinary.
sounds like your network is dropping. is this a big network? If you are getting this on multiple pc's that are connected to multiple switches then I would look at the server, otherwise have a look at your switches to diagnose.
The error on the s drive is just stating that the connection has been lost as it probably failed the keep alive check
The error on the s drive is just stating that the connection has been lost as it probably failed the keep alive check
You are losing your printers, so if your printers are connecting directly into your switch and not managed by the server then I am guessing your switch is dropping the connection so start there. If it is happening at the same time each day then do a continious ping from one client to another to prove and console to the switch to see what is happening also.
If it turns out not to be switch related, have a look on the server. eventvwr.msc at the time its dropping to see what is happening
If it turns out not to be switch related, have a look on the server. eventvwr.msc at the time its dropping to see what is happening
Active 6 days ago
What program do you have running on the S: drive? is there a workstation running without enough admin rights to access?
A program that comes to mind is TimeSlips, which needs access to the server from all workstations via the same drive letter, if not it causes problems like this. Are you certain all the drives mapped to the server for the program mentioned above are using the letter S to connect to the data? You could have a workstation connecting to the folder using a different drive letter that me be causing the issues you're seeing.
If this is the case make a logon script to make sure if mapped drives get disconnected they are not joined again using a different letter, for example the Z: drive. Make the logon script delete / disconnect any incorrect drives and remap using S drive letter.
A program that comes to mind is TimeSlips, which needs access to the server from all workstations via the same drive letter, if not it causes problems like this. Are you certain all the drives mapped to the server for the program mentioned above are using the letter S to connect to the data? You could have a workstation connecting to the folder using a different drive letter that me be causing the issues you're seeing.
If this is the case make a logon script to make sure if mapped drives get disconnected they are not joined again using a different letter, for example the Z: drive. Make the logon script delete / disconnect any incorrect drives and remap using S drive letter.
Active 6 days ago
Another program that can cause problems if using a shared database from workstations to the server is QuickBooks, are you using this software? If so check the drive mappings and installation / configuration on each workstation running the program.
This problem occurs because the network firewall filters Kerberos traffic.
Here is alink describing the situation and resolution
http://support.microsoft.com/kb/938457
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
You may have discovered the 'Compatibility View Settings' workaround for making your SBS 2008 Remote Web Workplace 'connect to a computer' section stops 'working around' after a Windows 10 client upgrade. That can be fixed so it 'works around' agai…
For both online and offline retail, the cross-channel business is the most recent pattern in the B2C trade space.
This Micro Tutorial will teach you the basics of configuring your computer to improve its speed. It will also teach you how to disable programs that are running in the background simultaneously.
This will be demonstrated using Windows 7 operating…
This Micro Tutorial will give you a introduction in two parts how to utilize Windows Live Movie Maker to its maximum capability.
This will be demonstrated using Windows Live Movie Maker on Windows 7 operating system.
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month4 days, 15 hours left to enroll
636 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.