Receiving Error – ‘ The security database on the server does not have a computer account for this workstation trust relationship ‘

Filed Under (Dorky Stuff, Tech Stuff) by admin on 22-05-2013

I ran across this issue after having to replace a Windows 2008 R2 System.  I wanted to keep the server name of the new system the same as the old –  (SERVER1) because I wanted to prevent end users from having to delete and re-add any of their network printer resources.  Additionally, many antivirus software clients running on desktops/laptops communicated with this specific server name for their virus definition updates.
I renamed the old server “SERVER1″ –TO–> “SERVER5″  and brought the brand new system online as “SERVER1″ and joined it into the DOMAIN without issue.  I needed the old server to remain online in the event of a problem.  The system actually ran perfectly fine but a week later I began receiving the trust relationship error shown below when I would try and login to the console with the administrator account.  On one of the network domain controllers I saw the System Event 11 generated as shown below:

Domain Controller Showing System Event 11 Error

 

Windows 2008R2 Error When Attempting to Login With Administrator Account

According to Microsoft – http://support.microsoft.com/kb/321044/en-us

This problem occurs because two or more computer accounts have the same service principal name (SPN) registered. Event ID 11 is logged when the Key Distribution Center (KDC) receives a ticket request, and the related SPN exists more than one time when it is checked on the global catalog (GC) for forestwide verification.  My simple explanation is that the original process of switching SERVER1 to a new temporary name didn’t go right.

The fix was pretty painless.  On the problem server open up a command line and type the following replacing SERVERNAME with the problem system (In this example SERVER1)
note-the first character is an l and not the number 1

ldifde -f c:check_SPN.txt -t 3268 -d “” -l servicePrincipalName –r “(servicePrincipalName=HOST/ServerName*)” -p subtree

Now find the file check_SPN.txt on your drive

The contents of the check_SPN.txt file that is generated should show something similar to the following.  Using the following output information SERVER1 is the system we are having trouble with.  SERVER2 is no longer in service.  As you can see the second portion of the output has a mix of both SERVER1 and SERVER 2 in its output

dn: CN=SERVER1,OU=Servers,DC=YOURDOMAIN,DC=com
changetype: add
servicePrincipalName: WSMAN/SERVER1
servicePrincipalName: WSMAN/SERVER1.YOURDOMAIN.com
servicePrincipalName: TERMSRV/SERVER1
servicePrincipalName: TERMSRV/SERVER1.YOURDOMAIN.com
servicePrincipalName: RestrictedKrbHost/SERVER1
servicePrincipalName: HOST/SERVER1
servicePrincipalName: RestrictedKrbHost/SERVER1.YOURDOMAIN.com
servicePrincipalName: HOST/SERVER1.YOURDOMAIN.com

dn: CN=SERVER2,OU=Servers,DC=YOURDOMAIN,DC=com
changetype: add
servicePrincipalName: HOST/SERVER2
servicePrincipalName: RestrictedKrbHost/SERVER2
servicePrincipalName: TERMSRV/SERVER2
servicePrincipalName: WSMAN/SERVER2
servicePrincipalName: WSMAN/SERVER1.Mcbassoc.com
servicePrincipalName: TERMSRV/SERVER1.Mcbassoc.com
servicePrincipalName: RestrictedKrbHost/SERVER1.Mcbassoc.com
servicePrincipalName: HOST/SERVER1.Mcbassoc.com

Hop into your domain controller and open “Active Directory Users and Computers” and right-click on your domain.  Click “Find” and change the drop down option to “Computers”.  Type the server name that is the equivilent to SERVER2 in the above example and DELETE it.  You should now be able to login to SERVER1 and carry on with your day!

 

GoDaddy Completely Down

Filed Under (News, Tech Stuff) by admin on 10-09-2012

UPDATE 9/11/2012 5:02PM EST

AnonymousOwn3r has now tweeted and leaked online via isafilehost.com what he/she claims are GoDaddy database/source code information in an attempt to prove their services were breached and not the result of an internal router issue

EDIT 9/11/2012

GoDaddy now states that corrupt router tables were the cause of the outage and not a result of any hack.  Time will tell if this is true as I’m sure those responsible will try again.

As of 2:36pm EST Godaddy and what appears to be most of it’s Internet lying infrastructure especially DNS Resolving system. Email or Web requests to domains registered with Godaddy are bouncing back as non existent/unavailable.  Early word is a rougue member of ANONYMOUS is behind the complete take down of millions of websites

My Name Landed in a Delco Times Article

Filed Under (Dorky Stuff, Just Interesting, News, Tech Stuff) by admin on 18-04-2012

My name landed in the paper for the first time in a while since I was a kid throwing snowballs at my brother. A story relating to a major widespread outage of Comcast TV/Internet services throughout Delaware County had contributions by me.  I was contacted by a reporter regarding the outage and how it impacted the services of the email/web related services with regards to Vazoom (www.vazoom.com)
Comcast you still rock!

http://delcotimes.com/articles/2012/04/18/news/doc4f8e26c2cf89c830961629.txt?viewmode=fullstory

 

T-Mobile Tethering for $15 Android Workaround

Filed Under (Tech Stuff) by admin on 29-11-2011

If you happen to have one of the new Android phones such as the HTC Amaze or even the Samsung Galaxy SII which happens to be my new phone :) .. you may be surprised to find that even though you pay for a “unlimited data” package of either 2GB or even 5GB with massive throttling of under 56K modem speeds thereafter you won’t be allowed to make your phone a wireless hotspot without adding a $15 package on top of your existing plan.  But before you upgraded from your other Android phone you were ok.  Don’t cry just yet or get angry even though you feel being billed twice for something you already pay for seems a bit unfair….there are plenty others who feel the same frustration.

So how do they know that you are attempting to use a computer as opposed to your phone to conduct Internet functions you might ask?

One way is due in part to a custom application running within the Android OS called TetheringManager which monitors the status of the this hotspot functionality on the phone itself.  A detailed look into the application package content show references to AT&T and Tmobile’s online splash notification pages.

…TetheringManagerService$ShowNotificationDialogATT  ….

…TetheringManagerServic$eShowNotificationDialogTMOBILE …

This  results in an unsubscribed user being redirected to the splash screen shown below (Tmobile example).

It’s quite simple to get around this obstacle and it involves first rooting your phone or gaining higher priviledges which voids your warranty however opens up a world of possibilities for backing up your applications and doing lots of other tweaking nerdiness.

The process of getting root access is very easy and a simple search for your phone type and the word root access will typically yield good directions.
Once root access is obtained download a quick program like System Tuner from the Google Marketplace.  (System Tuner requires you to turn on USB Debugging which is found under SETTINGS > APPLICATIONS > DEVELOPMENT)

Once you open System Tuner click System Apps located at the top and scroll down until you find TETHERINGMANAGER.  Click it and then select Freeze located at the bottom.  You should now be in business and able to browse the web without being asked to add on a package. This may violate the terms of your agreement with T-Mobile so user beware.  Don’t abuse the use of it and pay your bills on time! :)

 

Running Ubuntu Linux Desktop/Server 10.10

Filed Under (Tech Stuff) by admin on 24-03-2011

Linux isn’t a brand new topic to me although I am a tech nerd so I enjoy getting behind the scenes on lots of pieces of technology. I can recall obtaining the old Red Hat Linux distributions back in the ol’ days on CD from the postal service purchased via the early Internet. On my last truck I even had a clear Red Hat sticker that was planted right on the rear window. The whole world of Linux has evolved quite a lot and there are many different varieties a.k.a distributions now available. Yes young grasshopper, there are other options (free too) besides just Microsoft if you would like to run your own server! Lets be honest here, if you are a super nerd you would say in a geeky voice that your Linux based operating system is the super shiznat and with your root access you can do everything you ever wanted in your command line world.

In my opinion Ubuntu now ranks as one of the most popular flavors of Linux alongside the Red Hat distros. I recently put a system live onto a server for testing some things out. I configured Linux as a server with no GUI. I am definitely not a fan of non GUI based things however the configuration is pretty easy and with the aid of the Internet you are bound to find support if you are stuck on something. The system I configured is running Postfix (Email Server) with SpamAssassin and configured to run as a filter for incoming/outgoing email for a few domains. Email which is destined to one of my domains for example first routes into this system, is accepted or denied based on certain policies, then passed to the SpamAssassin application which analyzes it for junkmail status. The message is then forwarded onto one of the mail servers internally.

To install most applications you can run the apt-get command:
For example: To install Postfix I ran
sudo apt-get install postfix

*Note: The “sudo” portion of the above command is issued in many situations so that programs can be run as another user, typically the superuser or root. Windows users can reference the root as the almighty administrator account.
In addition to installing Postfix I wanted the ability to graphical view the flow of inbound and outbound messages to my internal mail handling systems.
More To Come!!! … Still Updating

Bye Bye Covad a.k.a. MegaPath a.k.a Speakeasy. You May Want to Avoid Them or Pay Another Big Fee on Top of Your Bill

Filed Under (Tech Stuff) by admin on 26-10-2010


I have used Covad Business DSL services for at least 7 years at a secondary location for backup servers for some Vazoom stuff. Recently, I received a bill with an added $8.55 Regulatory Surcharge. I decided to call them and they claim that since their merger with Megapath and Speakeasy Internet went into action they decided to impose a 9.5% increase on all customer accounts. 

 

Covad Billing Update

Regulatory Recovery Surcharge
October 7, 2010

What is the Regulatory Recovery Surcharge?

The Regulatory Recovery Surcharge (RRS) recovers Covad’s costs that result from local,
state and federal taxes, fees and regulation, including its payments to governmental entities

and to underlying network service providers.

How much is the Regulatory Recovery Surcharge?

Effective immediately, the rate will be 9.5% due to increases in Covad underlying costs, as
described above.

How often does the Regulatory Recovery Surcharge change?

We receive quarterly and annual adjustments in state and local sales taxes, regulatory
charges, and other monthly fees assessed by telecommunication providers. We try not to

adjust the RRS unless necessary.

They were absolutely uncaring to the fact I was a longtime customer.  Apparently this now monthly recurring surcharge was previously paid for by Covad but now it isn’t covered. I was never notified of the increase due to electronic billing and it’s a total lets get some more profit scam especially for 9.5%. Covad or Megapath or whatever you are now peace out. Great way to treat your long time customers. DSL service charges are a rip off as it is compared to the alternatives with even greater levels of throughput. I am sure they are losing a lot of DSL customers to cable and FIOS services. If you think their 1.5/384 w/ no static IPs w/  2 Year contract service will only cost you $79 as advertised on their website  think again. Try close to $90 a month. Now I will look for a new provider. There are plenty of them.

Here is a snippet from my latest bill showing this crazy regulatory fee they are now imposing on all customers:

From Date To Date Service Charges Event Type Quantity Price Total Disc Total Price
10/23/10 11/22/10 Dialup – 10 Hrs free Monthly Charges 1 $0.00 $0.00
10/23/10 11/22/10 IP Address – 5 BIA Monthly Charges 1 $10.00 $10.00
09/23/10 Payment Payment – Thank you -$89.95
10/22/10 10/22/10 Regulatory Surcharge Surcharge 1 $8.55 $8.55
10/23/10 11/22/10 Standard DSL Plus v.07 3.0/768 BIA Monthly Charges 1 $79.95 $79.95

——————————————————————————–
Total Current Charge for account #122411 (excludes taxes) $98.50