G
GADavies
I have a web server that has started to lock up and has to be rebooted every morning. Looking in the event logs I see a number of warnings and errors, these repeat throughout the day but the lockup always seems to happen just after one of these string of warnings and errors.
I am not the usual administrator for this server, the usual guy is not available for the entire month of July so I am struggling a little to get to grips with this.
The events I see are as follows:
Warning: Source - LSA (Lsasrv): Event ID 40961: General - The Security System could not establish a secured connection with the server LDAP/readonlyDC.domain.com/domain.com@DOMAIN.COM. No authentication protocol was available.
The warning is duplicated, time is exactly the same as the first instance. Next there is:
Error: Source GroupPolicy (Microsoft Windows Group Policy): Event ID 1030: General - The processing of Group Policy failed. Windows attempted to retrieve new Group Policy settings for this user or computer. Look in the details tab for error code and description. Windows will automatically retry this operation at the next refresh cycle. Computers joined to the domain must have proper name resolution and network connectivity to a domain controller for discovery of new Group Policy objects and settings. An event will be logged when Group Policy is successful.
Details show this:
So my question is what could be causing this and where do I look for the issue? The server was working fine until last week, no changes were made at the hardware or OS level so I am confused by the sudden issues
Continue reading...
I am not the usual administrator for this server, the usual guy is not available for the entire month of July so I am struggling a little to get to grips with this.
The events I see are as follows:
Warning: Source - LSA (Lsasrv): Event ID 40961: General - The Security System could not establish a secured connection with the server LDAP/readonlyDC.domain.com/domain.com@DOMAIN.COM. No authentication protocol was available.
The warning is duplicated, time is exactly the same as the first instance. Next there is:
Error: Source GroupPolicy (Microsoft Windows Group Policy): Event ID 1030: General - The processing of Group Policy failed. Windows attempted to retrieve new Group Policy settings for this user or computer. Look in the details tab for error code and description. Windows will automatically retry this operation at the next refresh cycle. Computers joined to the domain must have proper name resolution and network connectivity to a domain controller for discovery of new Group Policy objects and settings. An event will be logged when Group Policy is successful.
Details show this:
| + | System |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| - | EventData |
| SupportInfo1 | 1 |
| SupportInfo2 | 2950 |
| ProcessingMode | 0 |
| ProcessingTimeInMilliseconds | 937 |
| ErrorCode | 1326 |
| ErrorDescription | The user name or password is incorrect. |
| DCName | \\ReadonlyDC.domain.com |
So my question is what could be causing this and where do I look for the issue? The server was working fine until last week, no changes were made at the hardware or OS level so I am confused by the sudden issues
Continue reading...