The Add2Exchange Service Stops and have to manually retype login and passwords

If Add2Exchange was working and now it's not, post here.

You must sign in to post in the forums.
2/28/2011 3:07:53 PM
TervoCharged
Gravatar
Total Posts 158
View Posts

The Add2Exchange Service Stops and have to manually retype login and passwords

The A2E Service Account credentials are being tossed out of the Add2Exchange Service and A2ESQLServer Services every once in a while and it is necessary to manually retype the password and start the service for it to work again.
 

The idea that the “allow service to log on locally” keeps popping up suggested that there might be a domain policy that was blowing away the local policy setting.

If that’s the case, It might not even be that the password was lost, but that the domain policy was prohibiting the local service from running and masking the problem with a misleading error.

Usually adding the A2E Service Account to the local administrator of the box and the built in administrators grants the account this right but but if a domain or local policy is created, it takes precedent over any local policy and the account must be included manually. Usually the domain administrator account has that privilege but the A2E Service account is not part of that group.

In our analysis, there WAS a domain policy identifying one specific ID for the “log on as a service” right. We removed that domain policy as it was put in place for a different piece of “eval” software. We ran a gp update, stopped and started the SQL service. I even rebooted the server. Everything seems to be staying in place.
 

2/28/2011 3:49:30 PM
Ted Lilley
Gravatar
Total Posts 53
View Posts
Use the links in the footer below to keep up to date via our newsfeed or Facebook.

Re: The Add2Exchange Service Stops and have to manually retype login and passwords

From a post on Experts Exchange:

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_23779075.html

Go to the group policy management tool (if installed) under Start, Administrative Tools, GroupPolicy Management.  If you don't have it installed you can get it here:
 

http://www.microsoft.com/en-us/download/details.aspx?id=21895


The policy you need to look at will depend on how your AD structure is setup and what policy(s) are applied to the OU that contains the servers you're having a problem with.  Start with the default domain policy if you're not sure.  Then look under \Computer Config\Windows Settings\Local Policies\User Rights Assignment\Log on as a service

This is where you can specify accounts that are allowed to log on as a service.

You must sign in to post in the forums.

|

Website and materials copyright 2008-2014, all rights reserved DidItBetter.com Software. US: 800-837-8636 Intl: 001-813-977-5739

DidItBetter.com Software specializes in Exchange Sync and Hosting, Outlook Task Management and CRM solutions.