AzureAD Failure 2313

Everest MacDonald 21 Reputation points
2021-03-03T14:36:59.557+00:00

Hi All,

Spun up a new Azure Server 2019, and trying to authenticate using AzureAD user accounts for server login for the first time using that new preview functionality.

I've verified that the users have the "Virtual Machine Administrator Login" role, and that the PC trying to RDP From is AzureAD Registered.

However, I can't get any users to finish authentication properly. In the server logs, the RDP log identifies that an attempt to login happened, but did not complete. In the security log, I get the failure shown below. Through some Googling it is suggested that the error code & sub-error code mean that the user account does not exist. I tried adding the user accounts right on the server as "Work or school users" just in case, but it still throws the same error.

Any thoughts?

  • System

-
EventData

SubjectUserSid
S-1-0-0

SubjectUserName

-
SubjectDomainName

-
SubjectLogonId
0x0

TargetUserSid
S-1-0-0

TargetUserName
username@keyman .ca

TargetDomainName
AzureAD

Status
0xc000006d

FailureReason
%%2313

SubStatus
0xc0000064

LogonType
3

LogonProcessName
NtLmSsp

AuthenticationPackageName
NTLM

WorkstationName
My_Workstation

TransmittedServices

-
LmPackageName

-
KeyLength
0

ProcessId
0x0

ProcessName

-
IpAddress
216.223.79.xx

IpPort
0

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
782 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Jack B 0 Reputation points
    2023-07-05T14:54:34.6533333+00:00

    For the benefit of future visitors, as this is the first hit on google for Failure Status %%2313: We ran into this problem when trying to set up a new laptop. Same Status, FailureReason and Substatus as in the OP. The new laptop had the wrong time, and setting it correct fixed the problem. So it looks like this log entry probably covers a wide range of possible authentication failures.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.