Domain User Access Log

Similar Messages

• DC on VM Restored after crash - Does Not allow PCs to Join Domain, or Domain Users to Log in

  We currently had a RAID array crash and rebuilt our main server which housed VMs for our Web and DC.
  The main server was restored from a bare-metal backup from 6 months prior to the latest backup of the VMs (not sure if pertinent)
  Since the Restore, Domain computers cannot access file shares on the main server or VMs - "unspecified network error
  0x80004005
  Removed the main server from the Domain to re-join it due to some issues with logging in (even with a Domain Admin account) - Found that any PC removed from the domain was no longer able
  to rejoin - Receive (Network path was not found error)
  Domain Users cannot log in to their computers - Error reads "The trust relationship between this computer and the domain has been lost" - Domain Admin accounts can log in without
  problem.
  Have been working on it for two weeks and tried most of the things that I have found in others questions for related 
  DCDIAG results (run on DC VM) - More errors appear if run on the Server (Locator DcGetDcName(GC_Server_Required) call failed, error 1722 (same for PDC, TIME, GOOD_TIME, and KDC)
  Directory Server Diagnosis
  Performing initial setup:
     Trying to find home server...
     Home Server = DC1
     * Identified AD Forest. 
     Done gathering initial info.
  Doing initial required tests
     Testing server: Default-First-Site-Name\DC1
        Starting test: Connectivity
           ......................... DC1 passed test Connectivity
  Doing primary tests
     Testing server: Default-First-Site-Name\DC1
        Starting test: Advertising
           ......................... DC1 passed test Advertising
        Starting test: FrsEvent
           There are warning or error events within the last 24 hours after the
           SYSVOL has been shared.  Failing SYSVOL replication problems may cause
           Group Policy problems. 
           ......................... DC1 failed test FrsEvent
        Starting test: DFSREvent
           ......................... DC1 passed test DFSREvent
        Starting test: SysVolCheck
           ......................... DC1 passed test SysVolCheck
        Starting test: KccEvent
           ......................... DC1 passed test KccEvent
        Starting test: KnowsOfRoleHolders
           ......................... DC1 passed test KnowsOfRoleHolders
        Starting test: MachineAccount
           ......................... DC1 passed test MachineAccount
        Starting test: NCSecDesc
           ......................... DC1 passed test NCSecDesc
        Starting test: NetLogons
           ......................... DC1 passed test NetLogons
        Starting test: ObjectsReplicated
           ......................... DC1 passed test ObjectsReplicated
        Starting test: Replications
           ......................... DC1 passed test Replications
        Starting test: RidManager
           ......................... DC1 passed test RidManager
        Starting test: Services
           ......................... DC1 passed test Services
        Starting test: SystemLog
           A warning event occurred.  EventID: 0x80040022
              Time Generated: 01/15/2015   19:32:28
              Event String:
              The driver disabled the write cache on device \Device\Harddisk0\DR0.
           A warning event occurred.  EventID: 0x80040022
              Time Generated: 01/15/2015   19:32:28
              Event String:
              The driver disabled the write cache on device \Device\Harddisk0\DR0.
           A warning event occurred.  EventID: 0x80040022
              Time Generated: 01/15/2015   19:32:28
              Event String:
              The driver disabled the write cache on device \Device\Harddisk0\DR0.
           A warning event occurred.  EventID: 0x000003F6
              Time Generated: 01/15/2015   19:32:52
              Event String:
              Name resolution for the name DC1.Home.xxx.com timed out after none of the configured DNS servers responded.
           An error event occurred.  EventID: 0xC00038D6
              Time Generated: 01/15/2015   19:33:25
              Event String:
              The DFS Namespace service could not initialize cross forest trust information on this domain controller, but it will periodically retry the operation. The return code is in the record data.
           A warning event occurred.  EventID: 0x00000420
              Time Generated: 01/15/2015   19:33:29
              Event String:
              The DHCP service has detected that it is running on a DC and has no credentials configured for use with Dynamic DNS registrations initiated by the DHCP service.   This is not a recommended security configuration.
   Credentials for Dynamic DNS registrations may be configured using the command line "netsh dhcp server set dnscredentials" or via the DHCP Administrative tool.
           A warning event occurred.  EventID: 0x00002724
              Time Generated: 01/15/2015   19:33:33
              Event String:
              This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you should use only static IPv6 addresses.
           A warning event occurred.  EventID: 0x000727AA
              Time Generated: 01/15/2015   19:36:34
              Event String:
              The WinRM service failed to create the following SPNs: WSMAN/DC1.Home.xxx.com; WSMAN/DC1. 
           A warning event occurred.  EventID: 0x00001695
              Time Generated: 01/15/2015   19:59:52
              Event String:
              Dynamic registration or deletion of one or more DNS records associated with DNS domain 'Home.xxx.com.' failed.  These records are used by other computers to locate this server as a domain controller (if the specified
  domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).  
           A warning event occurred.  EventID: 0x00001695
              Time Generated: 01/15/2015   19:59:52
              Event String:
              Dynamic registration or deletion of one or more DNS records associated with DNS domain 'DomainDnsZones.Home.xxx.com.' failed.  These records are used by other computers to locate this server as a domain controller
  (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).  
           A warning event occurred.  EventID: 0x00001695
              Time Generated: 01/15/2015   19:59:52
              Event String:
              Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ForestDnsZones.Home.xxx.com.' failed.  These records are used by other computers to locate this server as a domain controller
  (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).  
           A warning event occurred.  EventID: 0x00000420
              Time Generated: 01/15/2015   20:20:21
              Event String:
              The DHCP service has detected that it is running on a DC and has no credentials configured for use with Dynamic DNS registrations initiated by the DHCP service.   This is not a recommended security configuration.
   Credentials for Dynamic DNS registrations may be configured using the command line "netsh dhcp server set dnscredentials" or via the DHCP Administrative tool.
           A warning event occurred.  EventID: 0x00002724
              Time Generated: 01/15/2015   20:20:25
              Event String:
              This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you should use only static IPv6 addresses.
           ......................... DC1 failed test SystemLog
        Starting test: VerifyReferences
           ......................... DC1 passed test VerifyReferences
     Running partition tests on : ForestDnsZones
        Starting test: CheckSDRefDom
           ......................... ForestDnsZones passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... ForestDnsZones passed test
           CrossRefValidation
     Running partition tests on : DomainDnsZones
        Starting test: CheckSDRefDom
           ......................... DomainDnsZones passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... DomainDnsZones passed test
           CrossRefValidation
     Running partition tests on : Schema
        Starting test: CheckSDRefDom
           ......................... Schema passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... Schema passed test CrossRefValidation
     Running partition tests on : Configuration
        Starting test: CheckSDRefDom
           ......................... Configuration passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... Configuration passed test CrossRefValidation
     Running partition tests on : Home
        Starting test: CheckSDRefDom
           ......................... Home passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... Home passed test CrossRefValidation
     Running enterprise tests on : Home.xxx.com
        Starting test: LocatorCheck
           ......................... Home.xxx.com passed test LocatorCheck
        Starting test: Intersite
           ......................... Home.xxx.com passed test Intersite
  All PCs can ping the DC, and get name resolution.  Checked IPs, DNS on both WS and DC (DC points to its own IP address with no other DNS), Forwarders for DNS appear to be working,
  as normal DNS name resolution and internet access works on all PCs.  Have tried disabling NIC card and installing another NIC.  All searches keep pointing back at the same things that I have tried.  I feel like I am missing something stupid.
   Please help

  The backup you used is too old. That is why your clients are experiencing trust relationship failures: the computer passwords are no longer matching so they are failing to connect to AD. You need to disjoin and join them again.
  I understand that this is the only DC you have so please make sure that the DC is not multihomed, that it points to its private IP address as primary DNS server and 127.0.0.1 as secondary one. Also, you might need to rebuild your SYSVOL folder if you keep
  getting the SYSVOL errors: https://support.microsoft.com/kb/315457?wa=wsignin1.0
  This posting is provided AS IS with no warranties or guarantees , and confers no rights.
  Ahmed MALEK
  My Website Link
  My Linkedin Profile
  My MVP Profile

• User access log -Analytics

  hello
  I need to get the user access log in order to know the user who access to the applications analytics OBIEE????

  Then use Usage Tracking Feature of OBIEE.
  The Oracle BI Server supports the accumulation of usage tracking statistics that can be used in a variety of ways such as database optimization, aggregation strategies, or billing users or departments based on the resources they consume. The Oracle BI Server tracks usage at the detailed query level.
  When you enable usage tracking, statistics for every query are inserted into a database table or are written to a usage tracking log file.
  You can find more details about Usage Tracking in Server Administrator Guide.
  - Madan

• Cross Domain User Access for Sharepoint 2013 site collection

  Hi All,
  We have three Domains , one is for client machines and  AD user access purpose and second one is production environment (only some of developers has access to this domain) and third one is SharePoint environment (Because External users needs to
  access my SharePoint sites) .
  now we need to access SharePoint site collections from my another two domain user accounts with out creating user account from SharePoint domain , how to enable this access?
  please advise.
  Thanks in Advance,
  Mani L

  Hi Mani,
  You're asking this question in the wrong forum, this forum is meant for suggestions and feedback on the forums themselves, not product support.
  I recommend reposting your question in the SharePoint forums here (or you can request that a moderator move this thread for you):
  http://social.technet.microsoft.com/Forums/en-us/home?category=sharepoint&filter=alltypes&sort=lastpostdesc
  Good luck.
  Don't retire TechNet! -
  (Don't give up yet - 12,950+ strong and growing)

• Non Domain User Access to Report Server

  HI Team,
  I am Back with another question. These days i am working on SSRS web services as a part of that i need to provide user access to non domain users to the report manager which is residing in a virtual machine and also when i use the report service web service
  URL it is asking for virtual machine's windows credentials and as per my client's requirement i should not be prompted with VM'S windows credentials.
  Also, we are providing end users with a login page and this login page is connected to a separate User's database  in the VM and how to register these non domain users in the report server database
  and also reort manager. please help me out of this issue. 
  Thank you.

  Hi NB515,
  In Reporting Services, if we connect to Report Manager out of domain, then we need provide a domain username and password can we access to it. If you want to skip this step, you can configure anonymous access for the report server. However,anonymous access
  is not recommended as it may give direct access to your report server or report projects to any one who know the URL of your Reporting Services. But in case you still want to try it, you can refer to the link below to see it:
  http://blog.quasarinc.com/ssrs/sql-server-reporting-services-2012-anonymous-access/
  If you have any questions, please feel free to ask.
  Regards,
  Charlie Liao
  TechNet Community Support

• ITunes U user access log

  Is there a way to show how many times or how long a user accesses your course?

  Then use Usage Tracking Feature of OBIEE.
  The Oracle BI Server supports the accumulation of usage tracking statistics that can be used in a variety of ways such as database optimization, aggregation strategies, or billing users or departments based on the resources they consume. The Oracle BI Server tracks usage at the detailed query level.
  When you enable usage tracking, statistics for every query are inserted into a database table or are written to a usage tracking log file.
  You can find more details about Usage Tracking in Server Administrator Guide.
  - Madan

• User access log

  Hi,
  Anybody has any idea how to extract the user access history in SAP? It's to be served as the audit log for security purpose.
  regards,
  sianghing

  Hi,
  There are quite a few threads discussing the similar requests.  However, it is not currently supported.  What you can do now is to have a regular alert query running in a fixed internal like an hour to record the active users.  Those records could be saved in a user table for your audit purpose.
  Thanks,
  Gordon

• Domain Users access to Remote Desktop Apps fails

  Can somebody bring a light to this issue?
  Our domain users are getting NO apps from the collection, when  they should get at least the Full MS Office 2013 Pro apps suite that was published to the collection without any user restrictions...
  Are they supposed to be member of the RDP Group or what else we missed during the settings?
  Also, when trying to access from IE using the link https:// [FQDN] /rdweb/feed/webfeed.aspx (FQDN omitted for security reasons) they get a prompt to download the file "WebFeedlogin.aspx" as son as they successfully authenticate with their
  credentials...
  FYI: All users member of Domain Admin group are working just fine...
  Thank you in advance for your time and effort to solve this! ;)

  Hi Marcio,
  Thank you for posting in Windows Server Forum.
  After going through your comment, I would say that to access RemoteApp by user they must be member of Remote Desktop User local group also. Apart you can go through below article for configuration related setting.
  - Introducing RemoteApp User Assignment
  - Step by Step Windows 2012 R2 Remote Desktop Services – Part 4
  Hope it helps!
  Thanks.
  Dharmesh Solanki
  TechNet Community Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• User access log from WLC

  I setup wirless network (a WLC-4402 with AP ), I would like to know that if a guest access our network, may I get the notification from syslog?

  How do you have the guest network setup? You have a guest anchor controller or is guest going out your main wlc? Also how is guest users accessing your network?

• User access logging for my Oracle database 9.2.0.3 and Linux server

  Hi Friends,
  I would like to have a record of users who had accessed my oracle apps database(9.2.0.3).Please let me know the method.
  Also i would like to record the users who had connected to my linux server (using putty) please suggest a method.
  Regards,
  Arun

  user564706 wrote:
  I would like to have a record of users who had accessed my oracle apps database(9.2.0.3).Please let me know the method.Perhaps sed (man sed) and records in listener.log, default at OH/network/log/, could help you to find a method.
  Also i would like to record the users who had connected to my linux server (using putty) please suggest a method.Take a look in /var/log e.g. wtmp (if such file name exists, and use man command on the file names to learn their usage). Should at least help identify telnet/ssh sessions.

• Blocked user accessing log in screen

  Hello all
  I have the EA4500 router with cisco connect cloud, must say this router is great for limiting kids online.
  1 question I have however is the ability for a blocked user (internet access block) that is redirected to the cisco web site and presented with a log in screen. Is there anyway I can disable this becuase the kids stay up all night trying to figure out the password to log in, I just want it to say internet access blocked with no option for logging in for the blocked user.

  This is could be how they designed that feature to work. I agree with jaymay
  I believe that I can make it

• Domain Users are not able to log in to Domain Computers - Administrators are able to do so

  I have Primary Domain Controller and Secondary one, The users can log in to both as I have changed the locally Policy to allow Domain users to log in. 
  But I am having problem with users who can not log in to computers joined the domain. I noticed that ONLY Administrators allowed to log in locally in the Policy and if want to add users, i will not be able to do so as Adding Users or Group is Disabled. 
  Advise is appreciated. 

  Hi,
  Please follow the below steps for checking whether either "Allow Logon Locally" or "Deny Logon Locally" is enabled in the default policy, 
  1. Go to start -> run -> tupe GPMC.MSC, to open Group Policy Management Console.
  2. In the  Group Policy Management Console,right click and edit the default policy and navigate to the node "Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment".
  3. In the "User Rights Assignment" node, check whether the options "Deny log on locally" or "Allow Logon Locally" are
  defined and groups added to those options to confirm the logon problem of domain users.
  NOTE: Also check the local policy, as you have mentioned "I have Primary Domain
  Controller and Secondary one, The users can log in to both as I have changed the locally Policy to allow Domain users to log in." 
  Regards,
  Gopi
  www.jijitechnologies.com

• Domain Users AD group disappearing from SharePoint security

  After applying SharePoint 2010 SP2 and the September 2014 cumulative update (KB 2883103) to our SP2010 farm, we've discovered the system is automatically removing the 'Domain Users' active
  directory group from SharePoint security.  It's not affecting any other AD groups or users or when Domain Users is a member of a SharePoint group.  Only when Domain Users has been explicitly added to a site, library, list or document.
  For example, we give Domain Users access to the root of most our site collections and then break inheritance for certain libraries or lists that need more security.  Now Domain Users has disappeared from every site.  I can say
  with 100% confidence that this has not been done by anyone in the organization.  Nothing else changed besides SP2 and Sept2014 CU. 
  Yesterday we fixed a few sites by re-adding Domain Users.  This morning those were missing again, so it must be a timer job or other cleanup process that is causing this.  Again, this does not affect SharePoint groups/membership or any other
  AD object, only Domain Users.
  Has anyone ran into this issue or have any suggestions on a resolution?  We have enabled audit logging but have not seen any related logs yet. 

  Sometime between noon and 1:00pm this afternoon we lost the Domain Users group again from all sites where we re-added it.  Audit logging is showing this for one particular site:
  {072c340a-42cb-4861-a182-38102b53bc52}
  {072c340a-42cb-4861-a182-38102b53bc52}
  Site
  System Account   <SHAREPOINT\system>
  2014-10-21T18:53:52
  Security Role Bind Update
  SharePoint
  <roleid>-1</roleid><principalid>DOMAIN\domain   users</principalid><scope>67A6138A-CBFA-42BD-87EF-86D558047D63</scope><operation>ensure   removed</operation>
  Does anyone know if any additional logging can be enabled to see WHY this is occurring?
  So far our solution has been to setup another AD security group and nest the domain users security group inside.  Not exactly a solution but at least a work around. 

• Could not start the listener with a domain user

  Hi all,
  I am working on Windows 2003 with Oracle 10.2.0.2 !
  With user "local system account", I can start the listener and I have no problems!
  after chaning the user that runs the listener from local system account to a domain user, I cannot start the listener again!
  (for the oracle service itself for the database, is it possible to change the user from local system to that domain user without problems)
  attached the error message when starting the listener with cmd.
  by starting the listener with the restart of the windows service, the listener crashed down after a few minutes
  do I have to set additional permissions for that domain user?
  thanks in advance
  Stefan
  C:\Documents and Settings\Administrator>lsnrctl start listener
  LSNRCTL for 32-bit Windows: Version 10.2.0.2.0 - Production on 17-JAN-2008 11:51:29
  Copyright (c) 1991, 2005, Oracle. All rights reserved.
  tnslsnr wird gestartet: Bitte warten...
  TNS-12537: TNS: Verbindung beendet
  TNS-12560: TNS: Fehler bei Protokolladapter
  TNS-00507: Verbindung beendet
  32-bit Windows Error: 109: Unknown error

  In this case I see three error messages:
  TNS-12537:     TNS:connection closed
  Cause:     "End of file" condition has been reached; partner has disconnected.
  Action:     None needed; this is an information message.
  TNS-12560:     TNS:protocol adapter error
  Cause:     A generic protocol adapter error occurred.
  Action:     Check addresses used for proper protocol specification. Before reporting this error, look at the error stack and check for lower level transport errors. For further details, turn on tracing and reexecute the operation. Turn off tracing when the operation is complete.
  TNS-00507:     Connection closed
  Cause:     Normal "end of file" condition has been reached; partner has disconnected.
  Action:     None needed; this is an information message.
  The most important is the tns-12560 error message, this means that an unsupported protocol exception was raised. Assuming you are using the same environment configuration when starting the listener with the local account and starting it with the domain authenticated user, then it has to do with permissions. Both the local administrator account and the domain authenticated user must belong to the ORA_DBA group, otherwise the user won't have enough privileges to start the listener.
  On the other hand, make sure the sqlnet.ora file includes this line:
  SQLNET.AUTHENTICATION_SERVICES= (NTS)
  If you use a domain user name, log on under a domain with username and password which has administrative privileges on each node
  ~ Madrid

• Looking for Suggestions on granting all users access to an application *except a subset of users*

  This might not be the right forum for this question, but since it is related to an App-V application I figured I would try since this may have come up for some of you.  I am looking for the best way to grant all Domain Users access to an application
  except for Domain Admins.  Using the Full App-V infrastructure, I want to grant access to the App-V UI via User Targeting, but I don't want to allow Domain Admins access.  The reason for this is because when we make updates to provisioned
  server cores (stateless), we login with our Admin accounts to make modifications to the cores, and I would like to reduce the steps that need to be taken at the end to ensure that all AppV applications are removed before sealing up the core. 
  Currently, Domain Admins do not have access to any App-V applications, so this process is fairly clean.  All applications are User Targeted. 
  Packages are cached on a persistent D drive on each server, so the issue is that the registry, programdata, and packageinstallationroot become out of sync if packages are pulled down during core modifications after the core is attached to other servers (hence
  other D drives).  Because of this, Machine Targeting is not an option for this either.
   

  This would be so much easier with a "Configuration Manager" like feature where you could create a collection query to accomplish the same thing.  Are there other tools out there that will do the same thing?