Support Center > Search Results > SecureKnowledge Details
Some Domain Controllers in Account Unit do not provide logon/logoff information Technical Level
Symptoms
  • Output of 'adlog a dc' command on Security Gateway shows some Domain Controllers as 'has connection', but with 0 (zero) events in the column 'Events in the last hour'.

  • If some of the working Domain Controllers are taken offline, then some of the Domain Controllers that reported 0 (zero) events, start to report correct number of events.

  • When running the debug of FWD daemon on Security Gateway (per sk86321), the $FWDIR/log/pdpd.elg* files repeatedly show:

    [PID]@HostName[Date Time] CpAsyncPipeSessionOpen: too many concurrent threads 100
    .....................................
    [PID]@HostName[Date Time] [Proc(TD::Surprise)] NAC::IS::ProcessTransport::ProcessTransport(const std::string&, NAC::IS::SmartPtr<NAC::IS::CpEnvironment>&, const std::string&): failed to execute command: '/opt/CPsuite-R75.40/fw1/bin/wmic ...'
    .....................................
    [PID]@HostName[Date Time] [Proc(TD::Surprise)] NAC::IS::SmartPtr<NAC::IS::BasicTransport> NAC::IS::S_ProcessExecuter::ExecuteProcess(const std::string&, const std::string&): Command line '/opt/CPsuite-R75.40/fw1/bin/wmic ...'
    .....................................
    [PID]@HostName[Date Time] [ADLOG_DCOM(TD::Critical)] virtual void ADLOG::DcomWmiTransport::performQuery(const std::string&, ADLOG::IWmiTransport::QUERY_METHOD, ADLOG::IWmiTransport::QUERY_TYPE): pBasicTransport is null
Cause

Identity Awareness AD Query cannot utilize more than 100 Domain Controllers at once.


Solution
Note: To view this solution you need to Sign In .