Error Message: Could not set filer password in domain
KB ID: 2010556
Error message: Could not set filer password in domain when adding filer into Active directory
While running cifs setup, machine account for the filer is created but the account password cannot be changed. Cifs setup fails and Common Internet File System protocol (CIFS) will not start.
Cifs setup fails with the following error:
CIFS - Could not set filer password in domain: User or Service not found in Kerberos database.
CIFS - Could not set filer password in domain.
CIFS could not create server machine account.
CIFS local server is shutting down.
All event logs shows the following description: There are multiple accounts with name kadmin/changepw of type 10'
Two krbtgt accounts exist in the Active Directory domain
This is because the customer bought another company and when they migrated their accounts over, it pulled over their krbtgt account and appended some characters to it from the merged domain name
A sample event log is shown below:
Event Type: Error Event Source: KDC Event Category: None Event ID: 11 Date: 3/5/2004 Time: 1:59:15 PM User: N/A Computer: <computername> Description: There are multiple accounts with name kadmin/changepw of type 10'
The errors and the event log above are generated because there were two krbpgt accounts that were trying to register the same SPN, (secure principle name). Delete one of the two accounts and the filer will add itself in.