i get this warning on both my servers and i cant figure it out

Richard Verhoeven 21 Reputation points
2021-04-23T11:39:42.603+00:00

The directory server has failed to create the AD LDS serviceConnectionPoint object in Active Directory Lightweight Directory Services. This operation will be retried.

Additional Data
SCP object DN:
CN={91a0ee4b-5c5f-4606-98a5-271e52a1113e},CN=VDGB2,OU=Domain Controllers,DC=vdgb,DC=local
Error value:
5 Access is denied.
Server error:
00000005: SecErr: DSID-031528D2, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

Internal ID:
33903d2
AD LDS service account:
NT AUTHORITY\NETWORK SERVICE

User Action
If AD LDS is running under a local service account, it will be unable to update the data in Active Directory Lightweight Directory Services. Consider changing the AD LDS service account to either NetworkService or a domain account.

If AD LDS is running under a domain user account, make sure this account has sufficient rights to create the serviceConnectionPoint object.

ServiceConnectionPoint object publication can be disabled for this instance by setting msDS-DisableForInstances attribute on the SCP publication configuration object.

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Server | User experience | Other
0 comments No comments
{count} votes

Accepted answer
  1. Anonymous
    2021-04-23T12:09:53.24+00:00
    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.