Forum Search:
Forum.Brain-Cluster.com: Brain Cluster Technical Forum
Ultimate forum for Technical Discussions

Home » Microsoft » Windows Server » Active Directory » Netlogon
Netlogon [message #390379] Fri, 12 February 2010 15:08 Go to next message
southpaw  is currently offline southpaw  United States
Messages: 61
Registered: July 2009
Member
Hi all,
I am starting see a buildup of daily reoccurring netlogon error messages
(5722,5723) on a few DCs for a number of PCs
The error message seem to indicate the machine has failed to establish a
secure channel connection with one of the DCs and may need to be re-added to
the domain. But interestingly I can't seem to find any of the machines in AD
..

I believe I read somewhere this is the result of imaging software and
perhaps the machines weren't removed from the domain before they were imaged
.. Since I manage a couple large sites and discussing with my desktop team
deemed fruitless , no any clues or indication except I was told the
machines are no longer on the network. Is there a way to get rid of these
annoying Netlogon messages..

Error message..
The session setup from the computer REM-LT-CBARLO failed to authenticate.
The name(s) of the account(s) referenced in the security database is
REM-LT-CBARLO$. The following error occurred:
Access is denied.
Re: Netlogon [message #390624 is a reply to message #390379] Sat, 13 February 2010 00:33 Go to previous messageGo to next message
meiweb  is currently offline meiweb  Germany
Messages: 2225
Registered: September 2009
Senior Member
Hello southpaw,

To get you correct the machines you are re-adding are not listed in AD UC?
If this is the case, check on all DCs for the name manual and remove them,
then run sysprep on them and add them again to the domain.

The imaging software isn't the problem, it is mostly the part that machines
are not prepared with sysprep before imaging them. Machine images without
using sysprep are not supported from Microsoft.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi all,
> I am starting see a buildup of daily reoccurring netlogon error
> messages
> (5722,5723) on a few DCs for a number of PCs
> The error message seem to indicate the machine has failed to
> establish a
> secure channel connection with one of the DCs and may need to be
> re-added to
> the domain. But interestingly I can't seem to find any of the machines
> in AD
> .
> I believe I read somewhere this is the result of imaging software and
> perhaps the machines weren't removed from the domain before they were
> imaged . Since I manage a couple large sites and discussing with my
> desktop team deemed fruitless , no any clues or indication except I
> was told the machines are no longer on the network. Is there a way to
> get rid of these annoying Netlogon messages..
>
> Error message..
> The session setup from the computer REM-LT-CBARLO failed to
> authenticate.
> The name(s) of the account(s) referenced in the security database is
> REM-LT-CBARLO$. The following error occurred:
> Access is denied.
Re: Netlogon [message #391965 is a reply to message #390624] Mon, 15 February 2010 10:16 Go to previous messageGo to next message
southpaw  is currently offline southpaw  United States
Messages: 61
Registered: July 2009
Member
Hello Meinolf ,

Sorry, I was not clear in my explanation. As part of my monthly maint I
typically review the system logs on all DCs and have been seeing a few 5722
and 5723 netlogon error messages. I searched ADUC for the computer names
referenced in the error messages and got no hits also, I am unable to ping
any of the missing computer accounts ..

It appears as though the computers accounts have deleted in AD but yet I'm
still seeing a error messages on the DCs.
My question is how do I get rid of these error messages on the DCs. perhaps
ADSIEdit or some tool?

TIA..

"Meinolf Weber [MVP-DS]" <meiweb@(nospam)gmx.de> wrote in message
news:6cb2911dd7848cc7a9e5ee6fda7@msnews.microsoft.com...
> Hello southpaw,
>
> To get you correct the machines you are re-adding are not listed in AD UC?
> If this is the case, check on all DCs for the name manual and remove them,
> then run sysprep on them and add them again to the domain.
>
> The imaging software isn't the problem, it is mostly the part that
> machines are not prepared with sysprep before imaging them. Machine images
> without using sysprep are not supported from Microsoft.
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>> Hi all,
>> I am starting see a buildup of daily reoccurring netlogon error
>> messages
>> (5722,5723) on a few DCs for a number of PCs
>> The error message seem to indicate the machine has failed to
>> establish a
>> secure channel connection with one of the DCs and may need to be
>> re-added to
>> the domain. But interestingly I can't seem to find any of the machines
>> in AD
>> .
>> I believe I read somewhere this is the result of imaging software and
>> perhaps the machines weren't removed from the domain before they were
>> imaged . Since I manage a couple large sites and discussing with my
>> desktop team deemed fruitless , no any clues or indication except I
>> was told the machines are no longer on the network. Is there a way to
>> get rid of these annoying Netlogon messages..
>>
>> Error message..
>> The session setup from the computer REM-LT-CBARLO failed to
>> authenticate.
>> The name(s) of the account(s) referenced in the security database is
>> REM-LT-CBARLO$. The following error occurred:
>> Access is denied.
>
>
Re: Netlogon [message #392298 is a reply to message #391965] Mon, 15 February 2010 17:52 Go to previous messageGo to next message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"southpaw" <nospam@somewhere.com> wrote in message
news:OUz4bKmrKHA.728@TK2MSFTNGP04.phx.gbl...
> Hello Meinolf ,
>
> Sorry, I was not clear in my explanation. As part of my monthly maint I
> typically review the system logs on all DCs and have been seeing a few
> 5722 and 5723 netlogon error messages. I searched ADUC for the computer
> names referenced in the error messages and got no hits also, I am unable
> to ping any of the missing computer accounts ..
>
> It appears as though the computers accounts have deleted in AD but yet
> I'm still seeing a error messages on the DCs.
> My question is how do I get rid of these error messages on the DCs.
> perhaps ADSIEdit or some tool?
>
> TIA..
>
>


When imaging, did you use Sysprep so they create a new SID upon a new image
initializting? If not, this will be a tough one because using one image
creates identical SIDs, and AD uses the SID. It would be difficult for AD to
distinguish the difference, for after all, it could be another machine with
a different name but with the same SID.

Read the following for more info:
http://eventid.net/display.asp?eventid=5722&eventno=105& amp;source=NETLOGON&phase=1


--
Ace

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

Please reply back to the newsgroup or forum for collaboration benefit among
responding engineers, and to help others benefit from your resolution.

Ace Fekay, MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE &
MCSA 2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
Microsoft MVP - Directory Services

If you feel this is an urgent issue and require immediate assistance, please
contact Microsoft PSS directly. Please check http://support.microsoft.com
for regional support phone numbers.
Re: Netlogon [message #392473 is a reply to message #390624] Tue, 16 February 2010 00:15 Go to previous message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Meinolf Weber [MVP-DS]" <meiweb@(nospam)gmx.de> wrote in message
news:6cb2911dd7848cc7a9e5ee6fda7@msnews.microsoft.com...
> Hello southpaw,
>
> To get you correct the machines you are re-adding are not listed in AD UC?
> If this is the case, check on all DCs for the name manual and remove them,
> then run sysprep on them and add them again to the domain.
>
> The imaging software isn't the problem, it is mostly the part that
> machines are not prepared with sysprep before imaging them. Machine images
> without using sysprep are not supported from Microsoft.
>

I agree.

Ace
Previous Topic:DC Upgrade
Next Topic:ADAC
Goto Forum:
  


Current Time: Thu Jan 18 20:46:57 MST 2018

Total time taken to generate the page: 0.03223 seconds
.:: Contact :: Home ::Sitemap::.

Powered by: FUDforum 3.0.0RC2.
Copyright ©2001-2009 FUDforum Bulletin Board Software