i get this warning on both my servers and i cant figure it out

Question

The directory server has failed to create the AD LDS serviceConnectionPoint object in Active Directory Lightweight Directory Services. This operation will be retried.

Additional Data
SCP object DN:
CN={91a0ee4b-5c5f-4606-98a5-271e52a1113e},CN=VDGB2,OU=Domain Controllers,DC=vdgb,DC=local
Error value:
5 Access is denied.
Server error:
00000005: SecErr: DSID-031528D2, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

Internal ID:
33903d2
AD LDS service account:
NT AUTHORITY\NETWORK SERVICE

User Action
If AD LDS is running under a local service account, it will be unable to update the data in Active Directory Lightweight Directory Services. Consider changing the AD LDS service account to either NetworkService or a domain account.

If AD LDS is running under a domain user account, make sure this account has sufficient rights to create the serviceConnectionPoint object.

ServiceConnectionPoint object publication can be disabled for this instance by setting msDS-DisableForInstances attribute on the SCP publication configuration object.

Answer 1

This one may help.
https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc733182(v=ws.10)?redirectedfrom=MSDN

--please don't forget to Accept as answer if the reply is helpful--