I have two XP SP2 clients who connect to a NTFS share on a Windows 2003 server by way of a network drive.
There are no issues during the day, but every night at 6.30pm & 6.50pm respectively, when trying to open or save a file from the directory in question, the client hangs, they can't connect to the drive and they get the following errors in their Event Log:
The Security System detected an attempted downgrade attack for server cifs/servername. The failure code from authentication protocol Kerberos was "There are currently no logon servers available to service the logon request.
(0xc000005e)".
Event 40960 (SPNEGO) negotiator
The Security System could not establish a secured connection with the server cifs/servername. No authentication protocol was available.
Event 40961 (SPNEGO) negotiator
The two clients are not part of the same domain that the share is on, but when connecting to the share, specify 'domainname\username & password' with a user that has permissions on that share.
I noticed that NTLM was not started on the server with the problem - i've started it now and set it to automatica - should this fix the issue? I know the clients can't authenticate using Kerberos.
There are no errors on the server.
The Kerberos ticket setting and it was set to timeout after ten hours (as it's a relatively new server), but I changed that a few weeks ago.
kerberos key distribution center is started and set to automatic.
Is there a way I could write a script to disconnect and then reconnect their connection to the shared drive at lunchtime (while they were away from their desk), so that it did it silently and there were no user prompts, even if they had a file open?
There are no issues during the day, but every night at 6.30pm & 6.50pm respectively, when trying to open or save a file from the directory in question, the client hangs, they can't connect to the drive and they get the following errors in their Event Log:
The Security System detected an attempted downgrade attack for server cifs/servername. The failure code from authentication protocol Kerberos was "There are currently no logon servers available to service the logon request.
(0xc000005e)".
Event 40960 (SPNEGO) negotiator
The Security System could not establish a secured connection with the server cifs/servername. No authentication protocol was available.
Event 40961 (SPNEGO) negotiator
The two clients are not part of the same domain that the share is on, but when connecting to the share, specify 'domainname\username & password' with a user that has permissions on that share.
I noticed that NTLM was not started on the server with the problem - i've started it now and set it to automatica - should this fix the issue? I know the clients can't authenticate using Kerberos.
There are no errors on the server.
The Kerberos ticket setting and it was set to timeout after ten hours (as it's a relatively new server), but I changed that a few weeks ago.
kerberos key distribution center is started and set to automatic.
Is there a way I could write a script to disconnect and then reconnect their connection to the shared drive at lunchtime (while they were away from their desk), so that it did it silently and there were no user prompts, even if they had a file open?
