| Event Id | 1981 |
| Source | Microsoft-Windows-ActiveDirectory_DomainService |
| Description | AD_TERM was unable to access the security identifier (SID) associated with the Enterprise Domain Controllers group or the Enterprise Read-only Domain Controllers group. |
| Event Information | According to Microsoft : Cause : This event is logged when AD_TERM was unable to access the security identifier (SID) associated with the Enterprise Domain Controllers group or the Enterprise Read-only Domain Controllers group. Resolution : Look for additional errors that are related to the application directory partition This is a general event message indicating that larger issues may exist. Look for the following Event IDs in the Directory Services log of Event Viewer: 1979, 1980, 1982, and 1983. If any of these events exist, use the additional information in them to resolve the issue. Verify : After you create an application directory partition, check Event Viewer for the following Event IDs: 1979, 1980, 1981, 1982, and 1983. If you find these events after you create an application directory partition, the attempt to create the partition failed. To perform this procedure, you must have membership in Domain Admins, or you must have been delegated the appropriate authority. To verify the creation of an application directory partition by using Event Viewer:
|
| Reference Links | Event ID 1981 from Source Microsoft-Windows-ActiveDirectory_DomainService |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.