Deployment Solution

 View Only
Back to Library

Invalid Password in Deployment Solution 

Apr 17, 2007 10:51 AM

A day out of the life of a System consultant. Today a customer called me, and he explained to me that his Deployment Solution was not functioning anymore.

First question I asked: Have you done anything on the server?

Answer: No, I only installed the new patches and Microsoft updates.

I got in my car and drove to the customer to see what was happening.

When a client booted into PXE boot and tried to connect to the express share, there was a statement that the password was invalid.

Click to view.

Entering the password gave an invalid disk error, and the machine rebooted.

Looking at the share, the security rights did not reveal the problem.

What happened? Below you will find the answer.

Microsoft has set his/her minds on a higher level of security. So they decided that it was necessary to put a security sign value to enabled.

This only happens on domain controllers. So if your Altiris Deployment Solution is on a domain controller, remember this article.

Go to start, programs and administrative tools.

Click on default domain security settings.

Go to the rule Microsoft network client, Digitally sign communications (always). Set this back to disabled.

Do this also on the default domain controllers security settings.

Click to view.

Reboot your server.

Now it works again.

Reading this article costs you 5 minutes. Today this costs me over 4 hours.

Regards
Erik

Statistics
0 Favorited
0 Views
2 Files
0 Shares
0 Downloads
Attachment(s)
Download All
JPG file
security 1.JPG   84 KB   1 version
Uploaded - Apr 10, 2020
 
Download
JPG file
security 2.JPG   139 KB   1 version
Uploaded - Apr 10, 2020
 
Download

Tags and Keywords

Comments

Migration User
Aug 20, 2010 03:19 PM


I have 2 deployment servers, 6.1 and 6.9.  Both are domain members and the security settings appear to be the same on both.  They are both Windows server 2003.  The DOS based PXE boot on the 6.1 server has been working for several years.  We want to move to 6.9 but get the same invalid password error mentioned above.  Both setups use the username used to run the altiris server.  Both are 11 character usernames with 7 character passwords - no special characters.  Any idea of where else to look for the problem?

Thanks very much.

riva11
Apr 24, 2007 05:56 AM

Interesting article, I have to remember what you described.
Fortunately in my network environment the DC is running in a separate box device and the applications server is separated for the rest of the others.
Thanks
PM

Migration User
Apr 24, 2007 02:40 AM

Mciraco,
You have two possible scenarios.
The Deployment Solution is installed on a domain controller, or it is installed on a member server.
On the domain controller you do it on the default domain security.
On the member server you do it on the server security settings.
The server settings may set to always, because the client that gets the failure does not use this.
Regards
Erik

Migration User
Apr 23, 2007 06:26 PM

I have seen this issue occur on member servers as well. The fix is as follows:
- Go to the rule Microsoft network SERVER, Digitally sign communications (always). Set this back to disabled. Reboot the server.
- If you are using a domain account to access the express share, make sure that the password never expires and the length of the password is less than or equal to 8 characters.

Related Entries and Links

No Related Resource entered.