This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Community FAQ
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 

scanning cause all active directory users to be locked out

eyalg
Engaged Sweeper

‎04-25-2010 09:09 AM

Hi,

After upgrade to ver 4 ,all the users at active directory being locked out.

What did we do wrong ?

What could cause this ? how to prevent it from happening again ?

Thanks,

Eyal
Labels:
0 Kudos
4 REPLIES 4
Hemoco
Lansweeper Alumni

‎04-25-2010 01:18 PM

Please check http://www.lansweeper.com/forum/yaf_postsm16600_Service-verson-4-0-0-20-released.aspx for an updated service.
0 Kudos
Hemoco
Lansweeper Alumni

‎04-25-2010 12:43 PM

Meanwhile we can confirm the problem, a fix will be released later today.
0 Kudos
eyalg
Engaged Sweeper

‎04-25-2010 12:41 PM

Despite what is said the errorlog.txt of lansweeper (c$\Program Files\lansweeper\Service) Showing the identification failures of each user :

22/04/2010 16:35:50: DOMAIN\IDP0587 Logon failure: unknown user name or bad password.

at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at LansweeperService.LS_ActiveDirectory.UserExistsInAD(String username, String userdomain, Hashtable& DomainsNotAvailableList)
22/04/2010 16:35:50: DOMAIN\IDP7676 Logon failure: unknown user name or bad password.

at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at LansweeperService.LS_ActiveDirectory.UserExistsInAD(String username, String userdomain, Hashtable& DomainsNotAvailableList)
22/04/2010 16:35:50: DOMAIN\IDP7922 Logon failure: unknown user name or bad password.

at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at LansweeperService.LS_ActiveDirectory.UserExistsInAD(String username, String userdomain, Hashtable& DomainsNotAvailableList)
22/04/2010 16:35:50: DOMAIN\IDP7951 Logon failure: unknown user name or bad password.

at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at LansweeperService.LS_ActiveDirectory.UserExistsInAD(String username, String userdomain, Hashtable& DomainsNotAvailableList)
22/04/2010 16:35:50: DOMAIN\IDP8073 Logon failure: unknown user name or bad password

The DC show logs of EventID 675 for each user

Pre-authentication failed:
User Name: idp0587
User ID: DOMAIN\idp0587
Service Name: krbtgt/DOMAIN.CO.IL
Pre-Authentication Type: 0x2
Failure Code: 0x18
Client Address: 10.1.1.115 ( the lansweeper server ip )

0 Kudos
Hemoco
Lansweeper Alumni

‎04-25-2010 11:51 AM

The only user that could be locked out is the scanning user if you enter the password wrong.
0 Kudos

Archive

This board contains archived posts from the retired Lansweeper Forum and Insiders Community.

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now
li.common.scroll-to.top