E
eetchells
I have an XP Pro SP3 32 bit workstation that has one user that is having slow
(20-30min) logons. The screen sits at applying user settings.
The two following events are registered in the event logs when the user in
question tries to logon:
Event 40960 (The security system detected an attempted downgrade attack for
server LDAP/server.domain.com. The failure code from authentication protocol
kerberos was "There currently are no logon servers available to service the
logon request.
Event 40961 (The security system could not establish a secured connection
with the server LDAP/server.domain.com. No authentication protocol was
available.
This makes no sense because right before or after this logon attempt, two
other users with standard rights were able to logon without issue.
If we wait about 20-30 minutes, the users desktop finally comes up.
Sometimes the mapped drives are there and work, sometimes they are not.
It is a Windows 2008 domain with a single 2008 server 64 bit.
Other users on the XP workstation have no problems.
The user that has the problem has admin rights and can logon to the server
and other workstations without any problems.
The issue started several days ago and none of the articles on eventid.net
or MS KB seem applicable. I eventually gave up on the XP workstation,
formatted it and rebuilt it from scratch. It ran fine for 2 days and now the
problem is back...exact same scenario. No new software has been installed,
etc.
Does anyone have any ideas...this one is very strange.
Thx
Ed
(20-30min) logons. The screen sits at applying user settings.
The two following events are registered in the event logs when the user in
question tries to logon:
Event 40960 (The security system detected an attempted downgrade attack for
server LDAP/server.domain.com. The failure code from authentication protocol
kerberos was "There currently are no logon servers available to service the
logon request.
Event 40961 (The security system could not establish a secured connection
with the server LDAP/server.domain.com. No authentication protocol was
available.
This makes no sense because right before or after this logon attempt, two
other users with standard rights were able to logon without issue.
If we wait about 20-30 minutes, the users desktop finally comes up.
Sometimes the mapped drives are there and work, sometimes they are not.
It is a Windows 2008 domain with a single 2008 server 64 bit.
Other users on the XP workstation have no problems.
The user that has the problem has admin rights and can logon to the server
and other workstations without any problems.
The issue started several days ago and none of the articles on eventid.net
or MS KB seem applicable. I eventually gave up on the XP workstation,
formatted it and rebuilt it from scratch. It ran fine for 2 days and now the
problem is back...exact same scenario. No new software has been installed,
etc.
Does anyone have any ideas...this one is very strange.
Thx
Ed