Home | Site Map | Cisco How ToNet How To | Wireless |Search | Forums | Services | Donations | Careers | About Us | Contact Us|

Event ID: 11 - There are multiple accounts

Active Directory, Domain, DNS, WINS, DHCP, SBS, New Releases.

Event ID: 11 - There are multiple accounts

Postby chicagotech » Fri Aug 15, 2008 8:18 am

Hi, thanks for the reply and info.

I have run LDP however when I run the search it only returns 1 entry, which
to me would suggest no duplicates in Active Directory.

Any other ideas or can you think of anything I may have overlooked.

Thanks

Leo

"Robert L. (MS-MVP)" <findemail> wrote in message
news:eMtn8cj$IHA.5048@TK2MSFTNGP05.phx.gbl...
> You may want to use ADSI Editor to find the multiple accounts. This search
> result may help.
> Event ID 11
> We also receive the Event ID 11 - There are multiple accounts with
> name host/printsrv.chicagotech.net of type 10. That tells us there is a
> duplicate SPN ...
> www.chicagotech.net/troubleshooting/eventid11.htm
>
>
> --
> Bob Lin, MS-MVP, MCSE & CNE
> Networking, Internet, Routing, VPN Troubleshooting on
> http://www.ChicagoTech.net
> How to Setup Windows, Network, VPN & Remote Access on
> http://www.HowToNetworking.com

>> Hi,
>>
>> Can anyone help resolving the following error which I am receiving on our
>> Windows 2003 domain controllers System Log
>>
>> Source: KDC
>> Type: Error
>> Event ID: 11
>> Computer: DomainController
>>
>> There are multiple accounts with name MSSQLSvc/sql1.domain.local:1433 of
>> type DS_SERVICE_PRINCIPAL_NAME
>>
>> The problem machine identified by the error (sql1) is actually a new
>> SQL2005 production server so I need to be a little careful applying
>> updates & making changes to correct the problem.
>>
>> If anyone can help it would be appreciated.
>>
>> Thanks
>>
>> Leo
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
chicagotech
Site Admin
 
Posts: 6833
Joined: Mon Nov 27, 2006 1:24 pm
Location: Chicago USA

Postby chicagotech » Fri Aug 15, 2008 8:20 am

Hi,

This problem occurs because two or more computer accounts have the same
service principal name (SPN) registered. Event ID 11 is logged when the Key
Distribution Center (KDC) receives a ticket request, and the related SPN
exists more than one time when it is checked on the global catalog (GC) for
verification.
To resolve this problem, locate the computer accounts that have the
duplicate SPNs. When you have located the computers that have the duplicate
SPNs, you can either delete the computer account from the domain, disjoin
and rejoin the computer to the domain, or you can use ADSIEdit to correct
the SPN on the computer that has the incorrect SPN.

To locate the computer accounts that have the duplicate SPNs, use one of
the following methods.
Method 1: Use the LDP support tool
1. Click Start , click Run , type LDP , and then click OK .
2. Click Connection , and then click Connect .
3. Leave the default settings, and then click OK .
Note If you do not receive the expected result, try another search by using
the Global Catalog Port (3268) instead of the default setting (389).
4. Click Connection , and then click Bind .
5. Leave the default settings, and then click OK .
6. Click View , and then click Tree .
7. In the Tree View dialog box, type DC= YourDomain ,DC=com in the
BaseDN box, where YourDomain is your domain.
8. Click Browse , and then click Search .
9. In the Search dialog box, type DC= YourDomain ,DC=com in the BaseDN
box.
10. In the Search dialog box, type ( serviceprincipalname =HOST/
mycomputer.mydomain .com)
in the Filter box. If the service principal name that is referred to in the
error in the System log differs from this example, type the service
principal name to which the error refers.

Note If you do not receive the expected result, try searching for " HOST/"
as opposed to searching only for the exact SPN in the event ID.
11. Under Scope , click Subtree .
12. Click Run .

If this result is not what we expect, please try the followings.
Method 2:

Use the querySpn.vbs script in the following Microsoft TechNet article. To
use the script, copy the code, paste it into Notepad, and then save the
script as querySpn.vbs.
http://www.microsoft.com/technet/script ... query.mspx
Run the script by using the following command:
cscript spnquery.vbs HOST/mycomputer* >check_SPN.txt


Also, you can use setspn tool to locate duplicate SPN. You can refer to

Setspn Overview
http://technet2.microsoft.com/WindowsSe ... f0-4f6f-87
d2-f2e70294a5761033.mspx

Hope this helps.

Sincerely
Morgan Che
Microsoft Online Support
Microsoft Global Technical Support Center
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
chicagotech
Site Admin
 
Posts: 6833
Joined: Mon Nov 27, 2006 1:24 pm
Location: Chicago USA


Return to Windows

Your Ad Here

Who is online

Users browsing this forum: No registered users and 10 guests