Solved

Server 2012 R2 Clustered role not failing over

Posted on 2014-09-05
7
350 Views
Last Modified: 2014-09-16
I have a Clustered role consisting of an Bitvise SSH SFTP Server not failing over. The windows service does not start. I have other clustered roles on this cluster that have no trouble.  

When it tries to fail over, the following error appears in the Event log

event
  time: 2014-09-03 16:32:10.255235 -0400
  app: BvSshServer 6.07
  name: E_SERVICE_COMPONENT_INIT_ERROR
  desc: Error initializating component.
  parameters
    component: CompSec
  error
    type: Exception
    message: Error looking up local ComputerSid: [WVIVR-SFTPCLU01] First LookupAccountName() for 'WVIVR-SFTPCLU01' failed with the following error: Windows error 1332: No mapping between account names and security IDs was done. [WVIVR-SFTPCLU01\] First LookupAccountName() for 'WVIVR-SFTPCLU01\' failed with the following error: Windows error 1332: No mapping between account names and security IDs was done.
0
Comment
Question by:DTUser
  • 4
  • 2
7 Comments
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 40306675
have you checked the account being used is not locked out, disabled, or recently had password changed?
have you verified any security policy rights that user account should have is granted on that server?
0
 

Author Comment

by:DTUser
ID: 40306683
Which user account should I be looking at?  The Windows service is running as Local System.
0
 
LVL 57

Expert Comment

by:Cliff Galiher
ID: 40306686
Sounds like the SSH service is running as an account that is neither a domain account nor a "well known" account such as the network service. So the SID lookup not successful during failover and the new node cannot start the service because it does not have an account to start it under.
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:DTUser
ID: 40306707
I tried changing the SSH service to the domain administrator account, but afterwards the service would not start.
0
 
LVL 57

Expert Comment

by:Cliff Galiher
ID: 40306713
Well, getting the permissions so the service can run under a domain account, a well known account, or a managed service account (which is a specific type of domain account) will be essential to failover working. Which means understanding the requirements and poet tally working with the app vendor.
0
 

Accepted Solution

by:
DTUser earned 0 total points
ID: 40317930
I spoke with the vendor, but they could offer no support.  I ended up removing the service from the cluster.
0
 

Author Closing Comment

by:DTUser
ID: 40324964
None of the solutions worked, so I abandoned the process.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
sql server service accounts 4 42
Weird Batch File Behaviour 9 30
Performance monitors 6 25
Window update errors on VMs 9 25
Every now and then, Microsoft does something that totally impresses me. It doesn't happen often, but in this case I must say I am thoroughly impressed with Windows Server Backup. One of the long time issues with Windows Backup has been the ability t…
Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
In this Micro Tutorial viewers will learn how they can get their files copied out from their unbootable system without need to use recovery services. As an example non-bootable Windows 2012R2 installation is used which has boot problems.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question