Sunday, June 5, 2016

Active Directory trust suddenly broken (The local security authority is unable to obtain an RPC connection) through Palo Alto Firewall

Yet another issue I had to trougleshoot where Palo Alto firewall was involved.

So overnight AD trust was brokent, when attempting to validate the trust it gave error "The local security authority is unable to obtain an RPC connection".

It was not an easy issue to solve, because at first it seemed that no changes in the infrastructure made, no errors where found in AD logs, DNS was working, firewall ports where open, and also the Palo Alto firewall didn't show any blocked traffic.
But then I wound that Palo Alto had updated it's Applications and Threats definitions overnight. After reverting the definitions AD trust work once again. Immediately I also disabled auto update for this feature.

No comments:

Post a Comment