This problem is caused when a third-party agent is installed on the Exchange servers. Once this was uninstalled, the RBAC errors were no longer generated. Also, this issue is caused by backup agents as well. So also, check all the third-party agents you have installed on the Exchange servers.
Exchange 2013 RBAC error Event logs Event ID 258, 23, and 16
After installing Exchange Server 2013 CU23 in coexistence with Exchange Server 2007 SP3 RU23 DCs Windows 2016 Domain Level = 2012r2 Forest Level = Windows 2003, we are getting the following errors constantly being logged:
Event ID 258 MSExchange RBAC: RemotePS Public API Func GetApplicationPrivateData throws Exception Microsoft.Exchange.Configuration.Authorization.CmdletAccessDeniedException: The operation couldn't be performed because '<Exchange server object>' couldn't be found
Event ID 23 MSExchange RBAC: Exchange AuthZPlugin Fails to finish method GetApplicationPrivateData due to application exception Microsoft.Exchange.Configuration.Authorization.CmdletAccessDeniedException: The operation couldn't be performed because '<Exchange server object>' couldn't be found.
Event ID 16 MSExchange RBAC: RBAC authorization returns Access Denied for user <Exchange server object (SID=S-1-5-21-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx). Reason: User was not found on Domain Controller <DC FQDN>"
I can't find any references to a solution to this issue anywhere, nor where I should start troubleshooting, so any help would be greatly appreciated.
I apply RU23-KB4011325 a the issues is the same
Gaetano
Thanks,.
2 additional answers
Sort by: Most helpful
-
Gaetano Manfredi 41 Reputation points
2022-12-04T14:44:54.463+00:00 The problem was caused by group policies applied in several GPOs in Active directory, I have not been able to determine which policy causes the problem.
-
Gaetano Manfredi 41 Reputation points
2022-12-10T23:50:12.813+00:00 I was able to resolve the Incident by placing the computer object in an OU where group policies were not applied to it. OS Default Polices ware applied
The Exchange server was in the correct groups, no third-party agents were installed, and the antivirus was uninstalled.
The issues was originate by GPO Policies
thanks for your help