none
LS Protocol Stack - Event ID 14614 RRS feed

  • Pergunta

  • Pessoal, 

    Estou com um dúvida. Está ocorrendo constantemente esse erro, tenho um ambiente com OCS 2007 e Lync Server 2010.

    Todos os usuários Lync Server utilizam o Windows 7.

    Gostaria de saber se é necessário eu desabilitar a encriptação de 128-bit das configurações NTLM SSP based (includng secure RPC) servers on server, sendo que esses usuários que apresentam no log de erro estão no ambiente OCS.

    User authentication with NTLM protocol failed with error SEC_E_UNSUPPORTED_FUNCTION. This indicates a potential mismatch between security 
    policy settings on the client and server computers. The last failure was this SIP message: Trace-Correlation-Id: 1985682524 Instance-Id: 0006C57F Direction: no-direction-info Source: AS8K122XX.br.XXXXX Message-Type: request Start-Line: REGISTER sip:XXXXXX.XX SIP/2.0 From: <sip:XXXXXXXX@XXXXX.XXX>;tag=a8e4771f90;epid=b07aa2167a To: <sip:XXXXXXXXX@XXXXX.XXX> CSeq: 3 REGISTER Call-ID: 9aff1c52d2504a7583ad6d0db5a47771 Path: <sip:AS8K122XX.br.xxxxxxx:56073;transport=tls;maddr=192.168.90.91;opaque=state:Ee.haxX500EjywxmZgGjsaWotUgAA;lr;ms-received-cid=516
    00>;tag=3643649934D24932C074F88DB8807B57 Record-Route: <sip:AS8K122XX.br.xxxxxxx:56073;transport=tls;maddr=192.168.90.91;opaque=state:Ee.haxX500EjywxmZgGjsaWotUgAA;lr;ms-received
    -cid=51600>;tag=3643649934D24932C074F88DB8807B57 Via: SIP/2.0/TLS 192.168.90.91:56073;branch=z9hG4bKD8CFBA1A.B749EFC104465738;branched=FALSE;ms-received-port=56073;ms-received-cid=51600 Max-Forwards: 69 Contact: <sip:XXX.XX.XXX.XX:47115;transport=tls;ms-opaque=3f9a71d134;ms-received-cid=CDA500>;methods="INVITE, MESSAGE, INFO, OPTIONS,
    BYE, CANCEL, NOTIFY, ACK, REFER, BENOTIFY";+sip.instance="<urn:uuid:BE099D47-ABED-5C57-8B91-28F7C0665A9C>" Via: SIP/2.0/TLS 192.168.0.159:1235;received=XXX.XX.XXX.XX;ms-received-port=47115;ms-received-cid=CDA500 User-Agent: UCCP/2.0.6362.0 OC/2.0.6362.0 (Microsoft Office Communicator) Authorization: NTLM qop="auth", realm="SIP Communications Service", targetname="AS8K120XX.br.XXXXXX", gssapi-data="TlRMTVNTUAADAAAAGAAYAH
    wAAAAYABgAlAAAABAAEABIAAAADgAOAFgAAAAWABYAZgAAABAAEACsAAAAVYKQQgUBKAoAAAAPTgBBAFQAVQBSAEEAQgBSAEIAUgA4ADkAMAAxADcATgBYAFAAQwBPADAAOQA0ADU
    AOAA5AEpgQR/VNprbBNWHvHZ4KIylURvO1I58s3VsjMVv2HraYJPwFBu3w8z6Ms35zV9tbofJJNLLrKUjMGZrzqSjn/I=", opaque="222FF969", version=3 Supported: gruu-10, adhoclist, msrtc-event-categories Supported: ms-forking ms-keep-alive: UAC;hop-hop=yes Event: registration Content-Length: 0 ms-edge-proxy-message-trust: ms-source-type=InternetUser;ms-ep-fqdn=AS8K122BR.br.natura;ms-source-verified-user=verified Cause: This error can occur if the settings in "Network security: Minimum session security for NTLM SSP based (including secure RPC)
    clients" policy on the client computer are not the same as the settings in the "Network security: Minimum session security for NTLM SSP
    based (including secure RPC) servers" policy on this server. By default, the "Require 128-bit encryption" setting is disabled for
    computers running Windows Server 2008, Windows Vista, Windows Server 2003, Windows 2000 Server, or Windows XP. For computers running
    Windows 7 or Windows Server 2008 R2, this setting enabled by default. Resolution: Ensure that the "Network security: Minimum session security for NTLM SSP based (including secure RPC) clients" policy settings on the
    computers from which users log on are the same as "Network security: Minimum session security for NTLM SSP based (including secure RPC)
    servers" policy settings on this server.


    terça-feira, 14 de agosto de 2012 14:38