"A device attached to the system is not functioning." when users change password

When a user tries to change their password or I reset their password with the flag "User must change password on next log on" the message appeared “the device attached to the system not functioning”.

Users are on Windows 7.  Windows XP users seem to be unaffected.
2 Windows 2008 R2 Domain Controllers.
BMCISAdminAsked:
Who is Participating?
 
BMCISAdminAuthor Commented:
Turns out that the user was a member of builtin\guests.  Since the Group Policy denied access to Guests it would not allow him to access the DC to change his password.  Once he was removed everything worked fine.
0
 
Chad FranksSenior System EngineerCommented:
are there any errors int he event viewer?
0
 
BMCISAdminAuthor Commented:
Removed and re-added to the domain with no luck. Looked in the event log and found these:
Log Name: System
Source: Microsoft-Windows-Kernel-PnP
Date: 8/14/2014 5:46:50 AM
Event ID: 219
Task Category: (212)
Level: Warning
Keywords:
User: SYSTEM
Computer: BMC-D64-DD2THK1.Bachmanmachine.com
Description:
The driver \Driver\WUDFRd failed to load for the device WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_GENERIC&PROD_STORAGE_DEVICE&REV_9732#000000002417&0#.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event";>
<System>
<Provider Name="Microsoft-Windows-Kernel-PnP" Guid="{9C205A39-1250-487D-ABD7-E831C6290539}" />
<EventID>219</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>212</Task>
<Opcode>0</Opcode>
<Keywords>0x8000000000000000</Keywords>
<TimeCreated SystemTime="2014-08-14T10:46:50.124667100Z" />
<EventRecordID>109504</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="44" />
<Channel>System</Channel>
<Computer>BMC-D64-DD2THK1.Bachmanmachine.com</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="DriverNameLength">119</Data>
<Data Name="DriverName">WpdBusEnumRoot\UMB\2&37c186b&1&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_GENERIC&PROD_STORAGE_DEVICE&REV_9732#000000002417&0#</Data>
<Data Name="Status">3221226341</Data>
<Data Name="FailureNameLength">14</Data>
<Data Name="FailureName">\Driver\WUDFRd</Data>
<Data Name="Version">0</Data>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-GroupPolicy
Date: 8/14/2014 6:32:04 AM
Event ID: 1006
Task Category: None
Level: Error
Keywords:
User: BACHMAN\egraef
Computer: BMC-D64-DD2THK1.Bachmanmachine.com
Description:
The processing of Group Policy failed. Windows could not authenticate to the Active Directory service on a domain controller. (LDAP Bind function call failed). Look in the details tab for error code and description.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event";>
<System>
<Provider Name="Microsoft-Windows-GroupPolicy" Guid="{AEA1B4FA-97D1-45F2-A64C-4D69FFFD92C9}" />
<EventID>1006</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>1</Opcode>
<Keywords>0x8000000000000000</Keywords>
<TimeCreated SystemTime="2014-08-14T11:32:04.264234200Z" />
<EventRecordID>109545</EventRecordID>
<Correlation ActivityID="{11DBDE71-EF2F-42FE-A132-2B3C18CBA11B}" />
<Execution ProcessID="380" ThreadID="2024" />
<Channel>System</Channel>
<Computer>BMC-D64-DD2THK1.Bachmanmachine.com</Computer>
<Security UserID="S-1-5-21-944799027-1529429804-1844936127-1130" />
</System>
<EventData>
<Data Name="SupportInfo1">1</Data>
<Data Name="SupportInfo2">5012</Data>
<Data Name="ProcessingMode">2</Data>
<Data Name="ProcessingTimeInMilliseconds">1981</Data>
<Data Name="ErrorCode">49</Data>
<Data Name="ErrorDescription">Invalid Credentials</Data>
<Data Name="DCName">
</Data>
</EventData>
</Event>

Log Name: System
Source: SNMP
Date: 8/14/2014 5:46:43 AM
Event ID: 1500
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: BMC-D64-DD2THK1.Bachmanmachine.com
Description:
The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event";>
<System>
<Provider Name="SNMP" />
<EventID Qualifiers="49407">1500</EventID>
<Level>2</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2014-08-14T10:46:43.000000000Z" />
<EventRecordID>109482</EventRecordID>
<Channel>System</Channel>
<Computer>BMC-D64-DD2THK1.Bachmanmachine.com</Computer>
<Security />
</System>
<EventData>
<Data>SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration</Data>
<Binary>02000000</Binary>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-Wininit
Date: 8/14/2014 5:46:34 AM
Event ID: 11
Task Category: None
Level: Warning
Keywords:
User: SYSTEM
Computer: BMC-D64-DD2THK1.Bachmanmachine.com
Description:
Custom dynamic link libraries are being loaded for every application. The system administrator should review the list of libraries to ensure they are related to trusted applications.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event";>
<System>
<Provider Name="Microsoft-Windows-Wininit" Guid="{206F6DEA-D3C5-4D10-BC72-989F03C8B84B}" />
<EventID>11</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x4000000000000000</Keywords>
<TimeCreated SystemTime="2014-08-14T10:46:34.524639700Z" />
<EventRecordID>109459</EventRecordID>
<Correlation />
<Execution ProcessID="436" ThreadID="464" />
<Channel>System</Channel>
<Computer>BMC-D64-DD2THK1.Bachmanmachine.com</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="StringCount">1</Data>
<Data Name="String">C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~2.DLL</Data>
</EventData>
</Event>

Log Name: System
Source: NETLOGON
Date: 8/14/2014 5:46:34 AM
Event ID: 5719
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: BMC-D64-DD2THK1.Bachmanmachine.com
Description:
This computer was not able to set up a secure session with a domain controller in domain BACHMAN due to the following:
There are currently no logon servers available to service the logon request.
This may lead to authentication problems. Make sure that this computer is connected to the network. If the problem persists, please contact your domain administrator.

ADDITIONAL INFO
If this computer is a domain controller for the specified domain, it sets up the secure session to the primary domain controller emulator in the specified domain. Otherwise, this computer sets up the secure session to any domain controller in the specified domain.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event";>
<System>
<Provider Name="NETLOGON" />
<EventID Qualifiers="0">5719</EventID>
<Level>2</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2014-08-14T10:46:34.000000000Z" />
<EventRecordID>109458</EventRecordID>
<Channel>System</Channel>
<Computer>BMC-D64-DD2THK1.Bachmanmachine.com</Computer>
<Security />
</System>
<EventData>
<Data>BACHMAN</Data>
<Data>%%1311</Data>
<Binary>5E0000C0</Binary>
</EventData>
</Event>
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
BMCISAdminAuthor Commented:
Right now it is on only one system so I don't think this is a server issue.
0
 
Chad FranksSenior System EngineerCommented:
sounds like a DNS issue  - please make sure the DNS settings are correct.
0
 
BMCISAdminAuthor Commented:
I asked the user to try and change his password on another machine and he could not.  Same error.  I checked his machine's DNS and the settings were correct.  For good measure I flushed his DNS cache and re-registered his machine with no luck.  I logged in with on of my test lab IDs on his machine and the one he tried to change it on and a machine not yet touched and was able to change the password on each machine for the test account.  So now my thought is that it is an issue with his ID.  Suggestions?
0
 
Chad FranksSenior System EngineerCommented:
Do you use roaming profiles?  sounds like profile is corrupt....
0
 
BMCISAdminAuthor Commented:
No roaming profiles
0
 
Chad FranksSenior System EngineerCommented:
I really think you are to the point of deleting the user and re-creating the user name.  Sounds like there is some corruption with that account..
0
 
BMCISAdminAuthor Commented:
Created a totally new user, no good.  I now have another user having the same problem in the same OU.  I am also having another issue that I am really starting to think are related with another user in a different OU.  http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Windows_Server_2008/Q_28502112.html#a40274789
0
 
BMCISAdminAuthor Commented:
Accidental discovery
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.