02-07-2023 06:22 PM - edited 02-07-2023 06:23 PM
You are using Microsoft Active Directory, but you receive the following error log:
These issues occur even if AD settings are checked and changed based on the link below.
Has anyone experienced and solved these issues?
02-07-2023 06:37 PM
Hi @JoHyeonJae ,
You need to look at the security event viewer on your AD server to see the specific reason the access is denied.
02-08-2023 04:56 PM - edited 02-08-2023 04:56 PM
I have looked through the security event viewer on the Server side.
But, there was no evidence to cause it. Is there anything else I can check?
And I found the following article while tracking the error log that occurred. Is it not related to the issue that occurred?
02-08-2023 07:06 PM - edited 02-13-2023 04:30 PM
Hi @JoHyeonJae ,
So you see the DCOM error on the server? It will be in the system event viewer. Thank you for that URL. It has been updated since I last looked. It looks like this issue -> https://live.paloaltonetworks.com/t5/general-topics/user-identification-and-winrm-on-http/m-p/481674. It sounds like if you apply the patch you will be good, but it may be disabled next month. I think PANW will need to provide a fix by then. Please let me know what you find.
02-13-2023 04:21 PM - edited 02-13-2023 08:39 PM
After I went through the log, the error log number generated by the customer PA is 1288,1603 and the error log number written in the URL is 1587,1272.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!