Hi,
I have an issue that I have been unable to resolve. First I will attempt to
outling the infrasturcture. We are using Lenovo T61 laptops with Windows XP
SP2 installed with all updated patches. These laptops have Verizon Aircards
in them and we use CISCO VPN Solution to log into the domain. The 802.11 is
disabled. We have a 2000 mixed domain, Windows 2000 SP4 Domain Controllers
and Windows 2003 SP1 Domain Controllers. The problem is this. ALL of the
laptop users are locking out after one attempt. The lockout is random. It
does not occur eveytime. The policy in place is set for 3 attempts. This is
working fine on the Desktop workstations. (Also XP SP2). I have looked at
everything possible. The only thing that we have to tell us what the problem
is, is an Security Event Log that indicates that there is a problem with
Kerberosos Pre-Authentication:
Event Type: Failure Audit
Event Source: Security
Event Category: Account Logon
Event ID: 675
Date: 1/15/2008
Time: 8:09:08 AM
User: NT AUTHORITY\SYSTEM
Computer: Domain Controller
Description:
Pre-authentication failed:
User Name: Username
User ID: Domain\Username
Service Name: krbtgt/Domain
Pre-Authentication Type: 0x2
Failure Code: 0x18
Client Address: xxx.xxx.xxx.xxx
I have spent several weeks looking into this and we made the determiniation
to change users accounts to not use Pre-Authenication. This did not correct
the issue. I really am lost in this. We have read up on everything that is
out in the internet plus just about every technet article that has anything
to do with account lockout, lockout policy, and kerberosos. We even went as
far as to increase the amount of lockout attempts from 3 to 6 and still have
the same issue. Any assistance in this matter would be gratefully
appreciated as we don't seem to be able to fix it.
|
Similar Threads
