Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net. The EventId.Net for Splunk Add-on assumes that Splunk is collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
Process <process name> (PID=<process id>). Exchange Server <server name> does not have Audit Security Privilege on Domain Controller <server name>. This Domain Controller will not be used by DSAccess.
|English: Request a translation of the event description in plain English.|
This problem can occur because the Exchange security groups do no have the appropriate user rights to enable the Directory Service Access (DSAccess) component to communicate with Active Directory. See ME919089 for information on fixing this problem.
As per Microsoft: "The Exchange server specified in the event text does not have the Audit Security Privilege on the domain controller specified in the event. DSAccess will not use that domain controller until this is remedied. Possible causes include:
- Exchange setup has not completed the "domain prep" stage for this domain, or the Recipient Update Service is not configured in this domain.
- A permissions modification was made that caused the Exchange server to lose its permissions in Active Directory.
- The Audit Security Privilege was lost". See MSEX2K3DB for more details.
|Private comment: Subscribers only. See example of private comment|
|Links: ME919089, MSEX2K3DB|
|Search: Google - Bing - Microsoft - Yahoo - EventID.Net Queue (0) - More links...|
Send comments or solutions
- Notify me when updated