Event ID: 10036 Distributed COM

Suy Peang 91 Reputation points
2022-09-15T14:45:54.273+00:00

Dear All,

After cumulative patch applied to window active directory server 2016. I got many error message from event viewer, I have experience that’s from my network device connect issue with AD and other issue AD server consumed more CPU and memory. And I got many event Event ID: 10036 Distributed COM

The server-side authentication level policy does not allow the user domain\user SID (S-1-5-21-169265991-480587897-1379554900-3670) from address (192.168.10.4) to activate DCOM server. Please raise the activation authentication level at least to RPC_C_AUTHN_LEVEL_PKT_INTEGRITY in client application.

I see everybody go to fix the issue by disable the hardening changes
Path : HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole\AppCompat and create Value Name: "RequireIntegrityActivationAuthenticationLevel" and set to 0x00000000

I don’t want to fix by disable the handing change,

how’s we can fix without disable hardening change? And to keep my network device connect to DistributedCOM?
How’s to fix server consume more CPU and Memory?

Thanks Advance!

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,754 questions
Windows Server 2016
Windows Server 2016
A Microsoft server operating system that supports enterprise-level management updated to data storage.
2,508 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,093 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Anonymous
    2022-09-15T14:50:38.423+00:00

    Sounds like the DCOM application will need some updates from the developer.

    --please don't forget to upvote and Accept as answer if the reply is helpful--


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.