Lookup Procedures
Applies To: Windows Server 2008 R2
The Local Security Authority (LSA) policy provides a software interface for other software components when they query mappings between account names and security identifiers (SIDs) within the local domain and in trusted domains.
Events
Event ID | Source | Message |
---|---|---|
LsaSrv |
An anonymous session connected from %1 has attempted to open an LSA policy handle on this machine. The attempt was rejected with STATUS_ACCESS_DENIED to prevent leaking security sensitive information to the anonymous caller. The application that made this attempt needs to be fixed. Please contact the application vendor. As a temporary workaround, this security measure can be disabled by setting the \HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\TurnOffAnonymousBlock DWORD value to 1. This message will be logged at most once a day. |
|
LsaSrv |
A lookup request was made that required connectivity to a domain controller in domain %1. The LSA was unable to find a domain controller in the domain and thus failed the request. Please check connectivity and secure channel setup from this domain controller to the domain %2. | |
LsaSrv |
A lookup request was made that required connectivity to the domain controller %1. The local LSA was unable to contact the LSA on the remote domain controller. Please check connectivity and secure channel setup from this domain controller to the domain controller %2. | |
LsaSrv |
A lookup request was made that required the lookup services on the remote domain controller %1. The remote domain controller failed the request thus the local LSA failed the original lookup request. Please check connectivity and secure channel setup from this domain controller to the domain controller %2. | |
LsaSrv |
A lookup request was made that required a Global Catalog. The LSA was unable to either contact or authenticate to a Global Catalog and thus failed the lookup request. Please check the connectivity and authentication of this domain controller to a Global Catalog. | |
LsaSrv |
The LSA was unable to register its RPC interface over the TCP/IP interface. Please make sure that the protocol is properly installed. | |
LsaSrv |
The name %1 was translated to SID %2 from the trusted forest %3. The domain portion of the SID is not in the list of acceptable SID's found on the trusted domain object, thus this name to SID translation has been ignored. |