adclient: DIAG <bg:updateOS> smb.rpc.netlogon authenticate - useAuthen3=1.
adclient: DEBUG <bg:updateOS> util.except (cims::RPC) : NetLogon::authenticate failed: Buffer Overflow (reference ../smb/rpcclient/netlogon.cpp:247 rc: -2147483643)
These messages are getting logged because your computer's samAccountName (in layman's terms hostname) is greater than 15 characters long on DirectControl 5.0.x. This has been fixed in 5.1.0 and in current latest version that is 5.1.2 at the time of writing this blog post.
Every 30 seconds Centrify's adclient checks to see if the correct OS version and tatoo are set. If it is not, then it will first try to update these via NETLOGON API. If this fails too, then it will try with LDAP. However since the computer's samAccountName (in layman's terms hostname) is greater than 15 characters long, the NETLOGON API throws an exception so the LDAP method is never tried. This means the agent process will report a failed event every 30 seconds.
To check if addebug is enabled,
To turn on the addebug,
To turn off the addebug,
So, if you are still running DirectControl 5.0.x then it's time to upgrade to latest available version.
Any feedback will be highly appreciated.
This post appeared on the softlexicon.com by Sumit Goel. Copyright © 2012–2013 – softlexicon.com and Sumit Goel. All rights reserved. Not to be reproduced for commercial purposes without written permission.