Check the System Log for a Kerberos error as shown below.
Event Type: Error
Event Source: Kerberos
Event Category: None
Event ID: 4
Date: 1/29/2008
Time: 7:51:54 AM
User: N/A
Description:
The kerberos client received a KRB_AP_ERR_MODIFIED error from the server host/. The target name used was . This indicates that the password used to encrypt the kerberos service ticket is different than that on the target server. Commonly, this is due to identically named machine accounts in the target realm and the client realm. Please contact your system administrator.
netmon capture is started but before you attempt to access the server:
- flush Kerberos tickets of the user using the command "klist purge" (Klist is available in the Resource Kit)
- flush the DNS name cache using "ipconfig /flushdns"
- flush the NetBIOS name cache using "nbtstat -R"
What James has also told it is a good option to try for fixing the issue....
If it’s prompting for all users I doubt it’s one of those two reasons. It could be a DC related issue. I would start with dcdiag\netdiag and exbpa. I encountered this for another client; it ended up being a bad DC (unknown issue but work was done to do it according to user) I ended up excluding DC from dsaccess and went away.
From: exchangelist-bounce@xxxxxxxxxxxxx [mailto:exchangelist-bounce@xxxxxxxxxxxxx] On Behalf Of Gene Sibbs
Sent: Thursday, February 12, 2009 2:15 AM
To: exchangelist@xxxxxxxxxxxxx
Subject: [ExchangeList] Re: Outlook 2007 prompting for password every time?
This option was disabled on all users. What else can I check From: Chris Wall <Chris.Wall@xxxxxxxxxxxxxxxxxxx> This is a simple fix. Google finds it in just a few secs… Answer is below.
In Outlook, select Tools, Account Settings, double click ‘Microsoft Exchange’, More Settings (button), select the Security tab, uncheck “Always Prompt for Logon Credentials”.
From: exchangelist-bounce@xxxxxxxxxxxxx [mailto:exchangelist-bounce@xxxxxxxxxxxxx] On Behalf Of Gene Sibbs
|