Event ID 8224 — UNIX to Windows Password Synchronization Service -- Run-time Issues

Updated: December 16, 2008

Applies To: Windows Server 2008 R2

yellow

UNIX to Windows Password Synchronization Service -- Run-time Issues indicates the functionality of UNIX to Windows password synchronization operations.

When Password Synchronization is configured for UNIX to Windows synchronization, and UNIX to Windows synchronization is functioning normally, passwords that are changed on UNIX hosts are synchronized on Windows-based computers and domains. The Password Synchronization pluggable authentication module (PAM) makes this possible by intercepting the password change request on the UNIX host, encrypting the password, and then sending the password change request to the Password Synchronization service running on the Windows-based computers with which it is configured to be synchronized.

Event Details

Product: Windows Identity Management for UNIX
ID: 8224
Source: Microsoft-Windows-IDMU-PSync
Version: 6.0
Symbolic Name: MSG_ERROR_UPDATE_PASSWORD
Message: Unable to update password for user. %ruser = %1 %r Check if user account is locked, expired, or disabled.

Resolve

Correct undiagnosable UNIX side error

Password Synchronization was unable to update the password for the user. Verify that the user account is not locked, expired, or disabled. Open the Windows Event Viewer to see the exact error that occurred in the UNIX environment.

Contact the administrator of the UNIX-based network to troubleshoot any issues in the UNIX environment; inform the administrator that the UNIX-based user account specified in the error message might be locked, expired, or disabled.

Verify

To verify the functional state of UNIX to Windows password synchronization, retry UNIX to Windows password synchronization. UNIX to Windows password synchronization is fully operational when the password synchronization succeeds, and functioning with warning conditions present if password synchronization fails for some passwords but succeeds for others.

If password synchronization succeeds for some passwords but fails for others, the UNIX to Windows Password Synchronization Service is likely fully operational, but there might be account- or computer-specific configuration problems preventing password changes from being synchronized on UNIX-based hosts.

Related Management Information

UNIX to Windows Password Synchronization Service -- Run-time Issues

Identity Management for UNIX

Community Additions

ADD
Show: