![]() ![]() SO they are external request, yes it's totally possible and feasible that something was installed on the iPhone. Is it possible they installed something on their iPhone that is doing this?įorget about Xsan, it does not broadcast outside it's own network. The user name shown is for a user that is on vacation and has not responded to phone calls or e-mails. Since that user's account is now disabled, the login attempt fails with that reason. Always the same user name attempting to log in. The requests are coming from the outside. We do not have Xsan or an computers running the Apple OS. Some help on what this is all about and do I need to be concerned would be appreciated. ![]() The events still persist, but it makes me feel a little better - not much safer though. I have since disabled that user account on the network until I find out what is going on. None of the others are throwing security errors in my server event logs. I do have a number of users that access their e-mail and have iPhones, including this user. In researching these ports, they all appear to be used by Apple Xsan. The addresses are not local IP addresses. The source IP address will stay the same for an hour or two, then change to a different source IP address for a while. Event ID 531, Source = Security, Category = Logon/Logoff Windows server security log is indicating numerous failed attempts of a user trying to log in. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |