This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cannot validate the logon user account against the domain controller

I am getting the error "Cannot validate the logon user account against the domain controller." when trying to install the Enterprise Console 5.1 on a Windows 2008 R2 server that is in our DMZ.  Even though it is in the DMZ, it is still a domain member and I have logged into it as a domain user that is also a Domain Administrator.  My guess is a port needs to be opened but which one if I can already login as a domain user?

:34961


This thread was automatically locked due to age.
Parents
  • Your summary is correct.  I've tried some different combinations of values.  The only one where I get anything other than 2221 returned is if I enter \\dc1.domainname in the first prompt and my username on its own in the second (no preceding domainname\ or UPN).  With this combination I get a return value of 0.

    As this server is in the DMZ, not all ports are open between the server and the DC but obviously enough are open to allow the server to be joined to the domain and for domain users to login.

    Replication shouldn't be an issue as both my account and the account created for Sophos were created days ago.  Out of interest, which account should I be logged in as?  I'm logging as my admin account assuming that at some point I will be asked to provide the credentials for the SophosManagement user and the Sophos Database user.

    :35035
Reply
  • Your summary is correct.  I've tried some different combinations of values.  The only one where I get anything other than 2221 returned is if I enter \\dc1.domainname in the first prompt and my username on its own in the second (no preceding domainname\ or UPN).  With this combination I get a return value of 0.

    As this server is in the DMZ, not all ports are open between the server and the DC but obviously enough are open to allow the server to be joined to the domain and for domain users to login.

    Replication shouldn't be an issue as both my account and the account created for Sophos were created days ago.  Out of interest, which account should I be logged in as?  I'm logging as my admin account assuming that at some point I will be asked to provide the credentials for the SophosManagement user and the Sophos Database user.

    :35035
Children
No Data