Re: NTLM

From: Karin Galli [MS] (i-kgbauz_at_online.microsoft.com)
Date: 12/30/03 

Date: Tue, 30 Dec 2003 12:50:19 +0100

This article may be helpful:

289243 MS02-001: Forged SID Could Result in Elevated Privileges in Windows
2000
http://support.microsoft.com/?id=289243

Also, if you have trust with an NT domain and W2K machines are on this
domain, check that the W2K stations have synchronized the time with the W2K
domain. 

-- 
=====================================================
When responding to posts, please "Reply to Group" via
your newsreader so that others may learn and benefit
from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
"news.starhub.com.sg" <asd@asd.dd> wrote in message
news:3ff0d65f$1@news.starhub.net.sg...
> Hi All,
>
> It seems that I have a problem with NTLM in my Windows 2003. I tried to
> access a program located in Windows 2003 server using my Win2K
Professional.
> When I tried to log into the application, it says "Access is Denied".
>
> In the Event Log, I found this error,
>
> Event Type: Failure Audit
> Event Source: Security
> Event Category: Logon/Logoff
> Event ID: 537
> Date:  30-Dec-03
> Time:  2:58:53 PM
> User:  NT AUTHORITY\SYSTEM
> Computer: OSAN
> Description:
> Logon Failure:
>   Reason:  An error occurred during logon
>   User Name: wyc
>   Domain:  AAF
>   Logon Type: 3
>   Logon Process: NtLmSsp
>   Authentication Package: NTLM
>   Workstation Name: HELP
>   Status code: 0xC000005E
>   Substatus code: 0x0
>   Caller User Name: -
>   Caller Domain: -
>   Caller Logon ID: -
>   Caller Process ID: -
>   Transited Services: -
>   Source Network Address: xx.xxx.xxx.xx
>   Source Port: 1496
>
> For more information, see Help and Support Center at
> http://go.microsoft.com/fwlink/events.asp.
>
> I search for help in both MSKB and Windows 2003 Help file. In Windows 2003
> server, I found this article,
>
> "You can configure this security setting by opening the appropriate policy
> and expanding the console tree as such: Computer Configuration\Windows
> Settings\Security Settings\Local Policies\Security Options\"
>
> May I know where can I find it? Also, does anyone has experience this
> before?
>
> Thanks in advance.
>
>

Relevant Pages

  • Re: How to force a logoff in a logon script?
    ... Windows has a registry key that governs which UI will be presented ... the unauthorized user cancels the logon dialog and goes away ... system, but complains that there was no cancel button, only an OK ...
    (microsoft.public.windows.server.scripting)
  • Re: When utilizing "Switch User" the music "NEVER" Stops!
    ... 2004 Windows MVP "Winny" Award ... Switch User, changing logons and checking the top of Zone ... >logging onto the 2nd logon and then logging off and back ... >>NEVER stopped thru any of the screens ?? ...
    (microsoft.public.windowsxp.general)
  • An error occurred during logon
    ... Windows XP was installed. ... An error occurred during logon ... Substatus code: 0xC0000133 ... Caller User Name: - ...
    (microsoft.public.windows.server.sbs)
  • Wired problem
    ... I still have problem when Macintosh tries to access shared folder on Windows ... Logon Failure: ... Caller User Name: - ...
    (microsoft.public.windows.server.security)
  • Re: Huh? "Login failure: the user has not been granted the requested logon type at this compute
    ... I'm a pretty experienced Windows user and programmer, ... the user has not been granted the requested logon type ... on the appropriate OU to see the Group Policy for that OU]. ... > administrators' group to the domain controller. ...
    (microsoft.public.security)