We acquired a remote office and will be bringing them over to our domain soon. As of now they are on our network on a different subnet and I can PING their devices. I already built a DC at our home office, on our subnet and took it up to the remote office last weekend. I let it sit all weekend but noticed today in the event viewer I was getting flooded with Event ID 4 on the new server.
The Kerberos client received a KRB_AP_ERR_MODIFIED error from the server miadc1$. The target name used was E3514235-4B06-11D1-AB04-00C04FC2DCD2email@example.com. This indicates that the target server failed to decrypt the ticket provided by the client. This can occur when the target server principal name (SPN) is registered on an account other than the account the target service is using. Please ensure that the target SPN is registered on, and only registered on, the account used by the server. This error can also happen when the target service is using a different password for the target service account than what the Kerberos Key Distribution Center (KDC) has for the target service account. Please ensure that the service on the server and the KDC are both updated to use the current password. If the server name is not fully qualified, and the target domain (SEITLIN.COM) is different from the client domain (SEITLIN.COM), check if there are identically named server accounts in these two domains, or use the fully-qualified name to identify the server.
These are showing up every few seconds so I am thinking there is a serious problem with Kerberos. The new server is on our home domain, seitlin.com but there is another domain on the subnet that is soon to be shut down. Does anyone have any idea what could be causing these constant errors. Are there known issues associated with having two Domains on the same subnet? Could there be an issue related to me having configured the DC on a different subnet then it is on now? All advice on how to get migrating active directory from a windows 2003 domain to a new windows 2008rd domain is welcome...thanks