Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 379
  • Last Modified:

Server 2012 R2 Clustered role not failing over

I have a Clustered role consisting of an Bitvise SSH SFTP Server not failing over. The windows service does not start. I have other clustered roles on this cluster that have no trouble.  

When it tries to fail over, the following error appears in the Event log

event
  time: 2014-09-03 16:32:10.255235 -0400
  app: BvSshServer 6.07
  name: E_SERVICE_COMPONENT_INIT_ERROR
  desc: Error initializating component.
  parameters
    component: CompSec
  error
    type: Exception
    message: Error looking up local ComputerSid: [WVIVR-SFTPCLU01] First LookupAccountName() for 'WVIVR-SFTPCLU01' failed with the following error: Windows error 1332: No mapping between account names and security IDs was done. [WVIVR-SFTPCLU01\] First LookupAccountName() for 'WVIVR-SFTPCLU01\' failed with the following error: Windows error 1332: No mapping between account names and security IDs was done.
0
DTUser
Asked:
DTUser
  • 4
  • 2
1 Solution
 
Seth SimmonsSr. Systems AdministratorCommented:
have you checked the account being used is not locked out, disabled, or recently had password changed?
have you verified any security policy rights that user account should have is granted on that server?
0
 
DTUserAuthor Commented:
Which user account should I be looking at?  The Windows service is running as Local System.
0
 
Cliff GaliherCommented:
Sounds like the SSH service is running as an account that is neither a domain account nor a "well known" account such as the network service. So the SID lookup not successful during failover and the new node cannot start the service because it does not have an account to start it under.
0
Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

 
DTUserAuthor Commented:
I tried changing the SSH service to the domain administrator account, but afterwards the service would not start.
0
 
Cliff GaliherCommented:
Well, getting the permissions so the service can run under a domain account, a well known account, or a managed service account (which is a specific type of domain account) will be essential to failover working. Which means understanding the requirements and poet tally working with the app vendor.
0
 
DTUserAuthor Commented:
I spoke with the vendor, but they could offer no support.  I ended up removing the service from the cluster.
0
 
DTUserAuthor Commented:
None of the solutions worked, so I abandoned the process.
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now