FAQ  Search  Memberlist  Usergroups  Register  Profile  Private messages  Log in

Dup. Sids? DS_USER_PRINCIPAL_NAME

Forum Index -> microsoft.public.windows.server.active_directory

Author	Message
RC Guest	Posted: Mon May 15, 2006 8:59 pm    Post subject: Dup. Sids? DS_USER_PRINCIPAL_NAME I am getting the following error on the sam database DC "There are multiple accounts with name @domain.local of type DS_USER_PRINCIPAL_NAME." i ran ntdsutil and check the database for duplicate sids and the domain came back clean. i am getting this KDC error about once every day. any thoughts? Rich
Back to top
Kidem Guest	Posted: Mon May 15, 2006 9:05 pm    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME RC wrote: Quote: I am getting the following error on the sam database DC "There are multiple accounts with name @domain.local of type DS_USER_PRINCIPAL_NAME." i ran ntdsutil and check the database for duplicate sids and the domain came back clean. i am getting this KDC error about once every day. any thoughts? Rich OK use LDP.exe to see what is the multiple accounts with that UPN , so load LDP bind as administrator or domain admin creditials!! then search for @domain.local with the DS_USER_PRINCIPAL_NAME! i will look for a how to for you real quick!!
Back to top
RC Guest	Posted: Mon May 15, 2006 9:24 pm    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME i have it loaded. what is the search query?
Back to top
Kidem Guest	Posted: Mon May 15, 2006 9:47 pm    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME RC wrote: Quote: i have it loaded. what is the search query? your going to put in object class witch is what ever its says if found two or more of!! the check subtree!! then search!!
Back to top
RC Guest	Posted: Mon May 15, 2006 9:59 pm    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME bare with me. this is my first time doing this. if this is the error: There are multiple accounts with name @domain.local of type DS_USER_PRINCIPAL_NAME. open up ldp.exe, connect, bind, open the search box: BaseDN: ??? <-- what do i put here Filter: ??? <-- what do i put here put a check box in Subtree.
Back to top
Kidem Guest	Posted: Mon May 15, 2006 10:20 pm    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME RC wrote: Quote: bare with me. this is my first time doing this. if this is the error: There are multiple accounts with name @domain.local of type DS_USER_PRINCIPAL_NAME. open up ldp.exe, connect, bind, open the search box: BaseDN: ??? <-- what do i put here Filter: ??? <-- what do i put here put a check box in Subtree. BaseDN: domain name here Filter: DS_USER_PRINCIPAL_NAME = @domain.local i think thats it let me know
Back to top
RC Guest	Posted: Mon May 15, 2006 10:32 pm    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME yes that works .. in Base DN you have to input it like Base DN: DC=domain, DC=local Filter: DS_USER_PRINCIPAL_NAME = @domain.local here are the results i got. it didnt seem to fina anything: ***Searching... ldap_search_s(ld, "DC=domain,DC=local", 2, "DS_USER_PRINCIPAL_NAME = @domain.local", attrList, 0, &msg) Result <0>: (null) Matched DNs: Getting 0 entries: -----------
Back to top
Kidem Guest	Posted: Mon May 15, 2006 10:41 pm    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME RC wrote: Quote: yes that works . in Base DN you have to input it like Base DN: DC=domain, DC=local Filter: DS_USER_PRINCIPAL_NAME = @domain.local here are the results i got. it didnt seem to fina anything: ***Searching... ldap_search_s(ld, "DC=domain,DC=local", 2, "DS_USER_PRINCIPAL_NAME = @domain.local", attrList, 0, &msg) Result <0>: (null) Matched DNs: Getting 0 entries: ----------- it should be this i think , UserPrincipalName=@domain.local
Back to top
Kidem Guest	Posted: Mon May 15, 2006 10:43 pm    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME RC wrote: Quote: yes that works . in Base DN you have to input it like Base DN: DC=domain, DC=local Filter: DS_USER_PRINCIPAL_NAME = @domain.local here are the results i got. it didnt seem to fina anything: ***Searching... ldap_search_s(ld, "DC=domain,DC=local", 2, "DS_USER_PRINCIPAL_NAME = @domain.local", attrList, 0, &msg) Result <0>: (null) Matched DNs: Getting 0 entries: ----------- http://support.microsoft.com/?kbid=224543
Back to top
Joe Richards [MVP] Guest	Posted: Tue May 16, 2006 6:15 am    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME Kidem appears to be guessing. LDP can be a bit of a pain for a newbie, try this adfind -gc -b -f userprincipalname=name@domain.local userprincipalname You can get adfind off of my website, just type in adfind in google and click I feel lucky. joe -- Joe Richards Microsoft MVP Windows Server Directory Services Author of O'Reilly Active Directory Third Edition www.joeware.net ---O'Reilly Active Directory Third Edition now available--- http://www.joeware.net/win/ad3e.htm RC wrote: Quote: I am getting the following error on the sam database DC "There are multiple accounts with name @domain.local of type DS_USER_PRINCIPAL_NAME." i ran ntdsutil and check the database for duplicate sids and the domain came back clean. i am getting this KDC error about once every day. any thoughts? Rich
Back to top
RC Guest	Posted: Fri May 19, 2006 2:26 am    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME Both finally worked. I really wasnt all that familiar with the LDP tool but once i got the hang of it it made sense. your tool works just as well. much easier to be honest. ill take command over gui any day :) thanks Joe! Rich
Back to top
Joe Richards [MVP] Guest	Posted: Fri May 19, 2006 6:52 pm    Post subject: Re: Dup. Sids? DS_USER_PRINCIPAL_NAME Me too, that is why I wrote it. ) Glad you worked it out. joe -- Joe Richards Microsoft MVP Windows Server Directory Services Author of O'Reilly Active Directory Third Edition www.joeware.net ---O'Reilly Active Directory Third Edition now available--- http://www.joeware.net/win/ad3e.htm RC wrote: Quote: Both finally worked. I really wasnt all that familiar with the LDP tool but once i got the hang of it it made sense. your tool works just as well. much easier to be honest. ill take command over gui any day :) thanks Joe! Rich
Back to top
Display posts from previous: All Posts1 Day7 Days2 Weeks1 Month3 Months6 Months1 Year Oldest FirstNewest First

	Forum Index -> microsoft.public.windows.server.active_directory	All times are GMT
Page 1 of 1