Updating the password for an account in AD fails with errors 5759 and 1604 in the password update report. Still one can access the target device using that account. What happens ?
search cancel

Updating the password for an account in AD fails with errors 5759 and 1604 in the password update report. Still one can access the target device using that account. What happens ?

book

Article ID: 46965

calendar_today

Updated On:

Products

CA Privileged Access Manager - Cloakware Password Authority (PA) CA Privileged Access Manager (PAM)

Issue/Introduction

Updating password for a particular account in Active Directory fails from PAM, and in the Password change reports there are errors like the following

Sep 8, 2016 15:08:57",1604,<account_here>,172.30.30.52,AD,true,0.0,SYSTEM

Sep 8, 2016 15:12:24",5759,<account_here>,172.30.30.52,AD,true,0.0,SYSTEM

In turn in the sheduled jobs report, there are corresponding lines like

"Sep 8, 2016 00:00:00",verifyAll,false,verifyAccountPassword,daily,Failed to verify password with target. If this problem persists then please ask your Administrator to investigate. 
"Sep 8, 2016 11:17:19",changePasswordOnView-1232,false,updateTargetAccountPassword,,Authentication failed. 
"Sep 8, 2016 09:15:09",changePasswordOnView-1232,false,updateTargetAccountPassword,,Error updating password in Active Directory. Service credentials for this account (if any) were not updated. 

However, the device can be safely accessed with the account having problems

What may be happening ?

Environment

CA PAM

Resolution

This may occur if the account whose password has to be update has changed its OU. You need to update the account accordingly in PAM
Powered by Wolken Software