Event ID 675 - Pre-authentication failed
From: Stephane Charbonneau (stephane.charbonneau@synatek.com)
Date: 03/14/03
- Next message: Steven L Umbach: "Re: Encrypting ADO/RDS connection between servers"
- Previous message: Nate: "Computer Browser service"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: stephane.charbonneau@synatek.com (Stephane Charbonneau) Date: 14 Mar 2003 10:07:59 -0800
We're adding a 3rd Party certificates into AD to allow for smart card
logon. I've almost got the solution working:
- CA cert in GP and NTAuth
- DC certs deployed on a single forest, single domain, single domain
controller (with appropriate extensions)
- UPN on user certs, along with the required info
I've used the certutil.exe tool from .NET Admin Tools to verifiy the
DC and user smart card certs and all looks good.
However, when attempting to log into the WinXPSP1 machine (with proper
DNS entries and is member of domain), I get the following error on the
KDC:
Source: Security
Event ID: 675
Pre-authentication failed:
User Name: username
User ID: DOMAIN\username
Service Name: krbtgt/DOMAIN.COM
Pre-Authentication Type: 0xF
Failure Code: 0x10
Client Address: <IP>
The client gets the following error:
"The server authenticating you reported an error (0x00000BB)..."
I can't find a reference to this error code, so am having some
difficulties in focusing my efforts.
Does anyone know what this failure code means?
Thanks,
Steph
- Next message: Steven L Umbach: "Re: Encrypting ADO/RDS connection between servers"
- Previous message: Nate: "Computer Browser service"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
