cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
eyalg
Engaged Sweeper
Hi,

After upgrade to ver 4 ,all the users at active directory being locked out.

What did we do wrong ?

What could cause this ? how to prevent it from happening again ?

Thanks,

Eyal
4 REPLIES 4
Hemoco
Lansweeper Alumni
Please check http://www.lansweeper.com/forum/yaf_postsm16600_Service-verson-4-0-0-20-released.aspx for an updated service.
Hemoco
Lansweeper Alumni
Meanwhile we can confirm the problem, a fix will be released later today.
eyalg
Engaged Sweeper
Despite what is said the errorlog.txt of lansweeper (c$\Program Files\lansweeper\Service) Showing the identification failures of each user :

22/04/2010 16:35:50: DOMAIN\IDP0587 Logon failure: unknown user name or bad password.

at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at LansweeperService.LS_ActiveDirectory.UserExistsInAD(String username, String userdomain, Hashtable& DomainsNotAvailableList)
22/04/2010 16:35:50: DOMAIN\IDP7676 Logon failure: unknown user name or bad password.

at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at LansweeperService.LS_ActiveDirectory.UserExistsInAD(String username, String userdomain, Hashtable& DomainsNotAvailableList)
22/04/2010 16:35:50: DOMAIN\IDP7922 Logon failure: unknown user name or bad password.

at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at LansweeperService.LS_ActiveDirectory.UserExistsInAD(String username, String userdomain, Hashtable& DomainsNotAvailableList)
22/04/2010 16:35:50: DOMAIN\IDP7951 Logon failure: unknown user name or bad password.

at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()
at LansweeperService.LS_ActiveDirectory.UserExistsInAD(String username, String userdomain, Hashtable& DomainsNotAvailableList)
22/04/2010 16:35:50: DOMAIN\IDP8073 Logon failure: unknown user name or bad password

The DC show logs of EventID 675 for each user

Pre-authentication failed:
User Name: idp0587
User ID: DOMAIN\idp0587
Service Name: krbtgt/DOMAIN.CO.IL
Pre-Authentication Type: 0x2
Failure Code: 0x18
Client Address: 10.1.1.115 ( the lansweeper server ip )

Hemoco
Lansweeper Alumni
The only user that could be locked out is the scanning user if you enter the password wrong.