What's new
Forums on Intune, SCCM, and Windows 11

Welcome to the forums. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your topics and posts, as well as connect with other members through your own private inbox!

PENDING SCCM Computer Account lockouts after upgrade from 2103 to 2207

  • Thread starter Thread starter gc_sa
  • Start date Start date
  • Replies Replies 2
  • Views Views 1K
G

gc_sa

New Member
Messages
2
Reaction score
0
Points
1
Since I updated from version 2103 to version 2207 and applying the following Windows Updates to the Windows Server 2016 server: 09-2023 Cumulative Update, Service Stack Update and .NET Framework 4.8, I have been having regular account lockouts from the Computer Account. This is occurring on the CAS site and the secondary sites. Further details are as follows:

Running following roles on all servers:
Component Server
Distribution Point
Management Point
Site Database server
Site System
Software update point

The error (error ID 4625 in Security Logs) is as follows:
Security ID: SYSTEM
Account Name: [TheSCCMComputerName]$
Account Domain: [MyDomainName]
Logon ID: 0x3e7

Logon Type: 3

Account for Which Logon Failed:
Security ID: NULL SID
Account Name: (blank)
Account Domain: (blank)

Failure information:
Failure Reason: Unknown user name or bad password
Status: 0xC000006D
Sub Status: 0x0000064

Process Information:
Caller Process ID: 0x28c
Caller Process Name: C:\Windows\System32\lsass.exe

Network Information:
Workstation Name: [TheSCCMComputerName]
Source Network Address: (blank)
Source Port: (blank)

Detailed Authentication Information:
Logon Process: Schannel
Authentication Process: Kerberos
Transited Services: (blank)
Package Name (NTLM only): (blank)
Key Length: 0

Please help!
 
Sort by date Sort by votes
gc_sa said:
Since I updated from version 2103 to version 2207 and applying the following Windows Updates to the Windows Server 2016 server: 09-2023 Cumulative Update, Service Stack Update and .NET Framework 4.8, I have been having regular account lockouts from the Computer Account. This is occurring on the CAS site and the secondary sites. Further details are as follows:

Running following roles on all servers:
Component Server
Distribution Point
Management Point
Site Database server
Site System
Software update point

The error (error ID 4625 in Security Logs) is as follows:
Security ID: SYSTEM
Account Name: [TheSCCMComputerName]$
Account Domain: [MyDomainName]
Logon ID: 0x3e7

Logon Type: 3

Account for Which Logon Failed:
Security ID: NULL SID
Account Name: (blank)
Account Domain: (blank)

Failure information:
Failure Reason: Unknown user name or bad password
Status: 0xC000006D
Sub Status: 0x0000064

Process Information:
Caller Process ID: 0x28c
Caller Process Name: C:\Windows\System32\lsass.exe

Network Information:
Workstation Name: [TheSCCMComputerName]
Source Network Address: (blank)
Source Port: (blank)

Detailed Authentication Information:
Logon Process: Schannel
Authentication Process: Kerberos
Transited Services: (blank)
Package Name (NTLM only): (blank)
Key Length: 0

Please help!
Click to expand...
Since you have a CAS and thereof over 150K of devices, I recommend that you contact MS support directly.

The event viewer message say logon failed. So what are you hoping for?
 
Upvote 0 Downvote
Hi Garth,

Apologies for my incorrect data, I confused CAS with the Primary site. I do not have a CAS in my environment.

Thanks!
 
Upvote 0 Downvote
You must log in or register to reply here.

Similar threads

  • PENDING How to Activate Windows 11 with Intune, Local Active Directory, and SCCM
  • PENDING SCCM Capture media error 0x80070091
  • PENDING Fresh SCCM Server 2022 Install – Reuse Same Site Code Without Reinstalling All Clients?
  • PENDING Problems after Upgrading to ConfigMgr 2503
  • PENDING MDT integration still working in SCCM 2509?

    • Forum statistics

    Threads
    7,137
    Messages
    27,876
    Members
    18,163
    Latest member
    MPEDREIRA

    Latest posts

    Trending content
    Back
    Top