Hi,
We have several gateways set up on our other domains (DMZ, Test and Dev) using certificates to connect to the RMS with a few agents reporting to the gateway in it's domain. I am recieving this warning for all gateways and agents that are being monitored (in the other domains). All our servers are either Win 2003 32bit or Win 2003 64bit.
The Health Service cannot verify the future validity of the RunAs account PRODUCTION\username for management group PRODMGMT due to an error retrieving information from Active Directory (for Domain Accounts) or the local security authority (for Local Accounts). The error is The network path was not found.(0x80070035).
From the searching that I've done on the net, a couple of people have mentioned that if you set the password expiration flag on AD users and computers for the account the problem will go away.. This hasn't happened for me.
I have checked the logs on the gateway servers and they report the following messages:
Event Type: Error
Event Source: HealthService
Event Category: Health Service
Event ID: 7016
Date: 15/03/2010
Time: 6:05:25 AM
User: N/A
Computer: DEMOMMS003
Description:
The Health Service cannot verify the future validity of the RunAs account PRODUCTION\username for management group PRODMGMT due to an error retrieving information from Active Directory (for Domain Accounts) or the local security authority (for Local Accounts). The error is The network path was not found.(0x80070035).
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Event Type: Warning
Event Source: HealthService
Event Category: Health Service
Event ID: 7020
Date: 15/03/2010
Time: 6:05:25 AM
User: N/A
Computer: DEMOMMS003
Description:
The Health Service has validated all RunAs accounts for management group PRODMGMT, except those we could not monitor.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
However a few hours later I don't get any error messages and it seems to be working happily.
Event Type: Information
Event Source: HealthService
Event Category: Health Service
Event ID: 7026
Date: 15/03/2010
Time: 9:02:28 AM
User: N/A
Computer: DEMOMMS003
Description:
The Health Service successfully logged on the RunAs account PRODUCTION\username for management group PRODMGMT
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Event Type: Information
Event Source: HealthService
Event Category: Health Service
Event ID: 7023
Date: 15/03/2010
Time: 9:02:28 AM
User: N/A
Computer: DEMOMMS003
Description:
The Health Service has downloaded secure configuration for management group PRODMGMT successfully.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Event Type: Information
Event Source: HealthService
Event Category: Health Service
Event ID: 7025
Date: 15/03/2010
Time: 9:02:28 AM
User: N/A
Computer: DEMOMMS003
Description:
The Health Service has authorized all configured RunAs accounts to execute for management group PRODMGMT.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Event Type: Information
Event Source: HealthService
Event Category: Health Service
Event ID: 7024
Date: 15/03/2010
Time: 9:02:28 AM
User: N/A
Computer: DEMOMMS003
Description:
The Health Service successfully logged on all accounts for management group PRODMGMT
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Despite the successful logs that appear the gateway still shows up with the same warning.
If i stop and start the service on the gateway it then shows up as healthy in SCOM, but then the next day it the warning comes back.
Is the problem caused by different domain acounts and when it tries to find it in the domain it can't find it?
Cheers,
Phil