Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 26 Source: KDC

While processing an AS request for target service <service> the account hostname did not have a suitable key for generating a Kerberos ticket (the missing key has an ID of <value>). The requested etypes were <value>. The accounts available etypes were <values>.
Received this error due to the time being out of sync. The machine password reset without time being within the valid parameters so I had to perform this command:

netdom resetpwd /s:peerdc /ud:domain\user /pd:*

to reset the machine password after I corrected the time. System came back online with no further issues.
This error started one month after creating a new internal CA. Problem was fixed with the following command:

Certutil -dcinfo deletebad

Test with "klist tickets" before and after the command.
As per T734055, Kerberos allows certain encryption types that can be used to encrypt Kerberos tickets. Other encryption types can be configured for Kerberos clients that do not support the default encryption types. See the article for more details.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to



Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.