Link to home
Create AccountLog in
Avatar of compdigit44
compdigit44

asked on

Kerberos PAC Errors

We have a Windows 2016 RODC running server core in our DMZ. That is restricted via our firewall on which DC's internally it can communicate with. Sporadically we i.e once every other week get the following error message on one of the internal DC's the RODC can talk to. "During TGS processing, the KDC was unable to verify the signature on the PAC from RODCNA1$. This indicates the PAC was modified." Search online seems to point out this is normal but my problem is if this is normal they why is is an error
ASKER CERTIFIED SOLUTION
Avatar of Aard Vark
Aard Vark
Flag of Australia image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
Avatar of compdigit44
compdigit44

ASKER

Thank you for your feed back. All the article i have read seem to point out this is normal but was concerned this could have  been some type of attack on the RODC