Re: Share is denied and user is locked out
From: Ed (ebabin_at_yahoo.com)
Date: 05/13/03
- Next message: Henrik Andersson: "Kerberos logon failure - Windows Server 2003 RTM"
- Previous message: salam: "Pending Certificate"
- In reply to: Steven L Umbach: "Re: Share is denied and user is locked out"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 13 May 2003 03:39:57 -0700
A 'small' detail I've seemed to have left out (there are no issues to
which you've described below). We are constantly testing our software
in various test environments in where we would replace a workstation
with another using a manual switch box utilizing the same IP address
(it is much easier to do it this way instead due to our unique
environment). At first we noticed the other workstations would not
connect because the arp table associated the IP with the previous
workstation's MAC address. So we would gracefully shutdown all the
workstations (including the server) and reboot with the temporary test
WS. This seemed to go well for a while until the authentication would
not work properly as described.
thanks for your thoughts,
ed
"Steven L Umbach" <n9rou@attbi.com> wrote in message news:<U7Vva.818825$3D1.460965@sccrnsc01>...
> Hi Ed. Have you changed any security options/user rights settings on
> the server or workstations of late? If so, that may be causing a problem.
> Possibly someone has obtained administrator access to your server and
> changed some settings/ntfs permissions without your knowledge. Double check
> that share and ntfs permissions are correct with the proper users/groups
> shown. I would recommend checking the membership of the local administrator
> and power users group on the server, to see if it looks correct. Also change
> the passwords for any administrator or power users on that computer. Enable
> auditing account log on and log on events for success and failure to see
> what reason users are being denied access and if someone is trying to access
> administrator account. I would also suggest enabling auditing of account
> management and policy change. Run netdiag /v on the server while logged in
> as administrator to check for network configuration. Also run Security and
> Configuration Analysis against the set up security template to see what if
> any security settings have been changed from default paying particular
> attention to "additional restrictions fro anonymous users" and "lan man
> authentication level". --- Steve
>
> http://www.lokboxsoftware.com/SecureWin2K/secAnalysis.asp
>
> "Ed" <ebabin@yahoo.com> wrote in message
> news:2e0a15f6.0305121205.5ddb40a6@posting.google.com...
> > We have a workgroup only configuration with our storage device
> > (Windows 2000 Server) providing a network share accessible by all
> > users. Our user accounts are named the same on each workstation and
> > server. We had no problems for an extended amount of time but lately
> > after rebooting the workstations, we were prompted with a
> > user/password dialogue which fails and locks out the user account on
> > the server. This occurs regardless of which user attempts to access
> > the share.
> >
> > After a frustrating day and investigation put off until the next day,
> > the user accesses the share without difficulty. This continues
> > intermittently until we think it is narrowed down to a server problem,
> > in that we rebuilt the workstations without luck but in restoring the
> > server we were able to overcome this problem (temporarily). It's our
> > guess the server's authentication of the users connection request is
> > not be handled properly (but why only sometimes).
> >
> > Anyone ever see this before?
> >
> > ed
- Next message: Henrik Andersson: "Kerberos logon failure - Windows Server 2003 RTM"
- Previous message: salam: "Pending Certificate"
- In reply to: Steven L Umbach: "Re: Share is denied and user is locked out"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
