|
|
|
Forum Newbie
Group: Forum Members
Last Login: 7/17/2012 10:56:06 AM
Posts: 1,
Visits: 0
|
|
The security was just changed so users with multiple roles at the university, such as student and student aide, will now have the same IDs in the two domains. The application I am using will fail the login attempt unless the userid is entered with "@domain" attached. My understanding is that if the domain is not specified AD gets confused with the login attempt since it sees both domain IDs and is not sure which to pick. The use of the domain causes problems in the system since the application sees the userid as the whole string, including the "@domain". Since the application, and the server it runs on, only need to access the one domain, is there a way to force the server to always use a specific domain? Am I totally off base that this is the problem?
I am running Windows Server 2008
The message from the event viewer is;
+ System
- Provider
[ Name] Microsoft-Windows-Security-Auditing
[ Guid] {54849625-5478-4994-a5ba-3e3b0328c30d}
EventID 4625
Version 0
Level 0
Task 12544
Opcode 0
Keywords 0x8010000000000000
- TimeCreated
[ SystemTime] 2012-07-17T13:49:01.092Z
EventRecordID 367639
Correlation
- Execution
[ ProcessID] 644
[ ThreadID] 724
Channel Security
Computer WOS.Resource.hofstra.univ
Security
- EventData
SubjectUserSid S-1-5-18
SubjectUserName WOS$
SubjectDomainName RESOURCE
SubjectLogonId 0x3e7
TargetUserSid S-1-0-0
TargetUserName jmonca1
TargetDomainName
Status 0xc000006d
FailureReason %%2313
SubStatus 0xc0000064
LogonType 3
LogonProcessName Advapi
AuthenticationPackageName MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
WorkstationName WOS
TransmittedServices -
LmPackageName -
KeyLength 0
ProcessId 0x668
ProcessName C:\Windows\System32\MUdtSrvr.exe
IpAddress -
IpPort -
|
|
|
|