Tech Docs Home > AD Bridge >

LW_ERROR_PASSWORD_MISMATCH

Error

When querying domainjoin status, the following is returned:

/opt/pbis/bin/domainjoin-cli query
Error: LW_ERROR_PASSWORD_MISMATCH [code 0x00009c56]
"The password is incorrect for the given account"

Cause

If you see this error specifically when querying domain join status, this indicates the machine account password has expired or does not match the password stored in Active Directory.

Resolution

To correct this, run the following command:

/opt/pbis/bin/domainjoin-cli join <join arguments>

/opt/pbis/bin/lsa authenticate-user --user username --domain example.com

This will refresh the locally cached machine account password with what is stored in Active Directory.

BeyondTrust is the worldwide leader in intelligent identity and access security, enabling organizations to protect identities, stop threats, and deliver dynamic access. We offer the only platform with both intelligent identity threat detection and a privilege control plane that delivers zero-trust based least privilege to shrink your attack surface and eliminate security blind spots.

©2003-2024 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority. 2/28/2024

Top