PRB: COM+ Application Under Domain Account Fails Intermittently (312497)
The information in this article applies to:
- Microsoft COM+ 1.0
- Microsoft COM+ 1.5
This article was previously published under Q312497 SYMPTOMS
If a COM+ application runs under a domain account, when you type the
password, the application works initially and then fails suddenly with the following error message:
Event ID: 10004 Source: DCOM
DCOM got error "Logon failure: unknown user name or bad password." and was
unable to logon .\UserName in order to run the server:
{1FD7A201-0823-479C-9A4B-2C6128585168}
The only way to get the application to work is to retype the password.
CAUSE
This problem occurs because the Log on as a batch job privilege is not set for the identity of the COM+ package. When you set a user as the COM+ identity, COM+ adds this privilege for you.
However, if the user is a domain account, and if that user does not have the Log on as a batch job privilege set in a Group Policy Object (GPO) when the Active Directory performs an update, the identity of the COM+ package is reset, and the permission is removed.
If you retype the password, COM+ will add the Log on as a batch job privilege again for the local computer.
RESOLUTION
To resolve this problem, give the domain account the Log on as a batch job privilege in the Group Policy Object in the Domain Controller.
STATUSThis behavior is by design.
| Modification Type: | Major | Last Reviewed: | 2/24/2002 |
|---|
| Keywords: | kbprb kbSysAdmin KB312497 |
|---|
|