I am seeing the following Event ID: 3, Source:  Security-Kerberos error in my System event log.

A Kerberos Error Message was received:

on logon session ADMIN.MSU\mm207a-044068$

Client Time:

Server Time: 20:40:44.0000 12/8/2009 Z


Extended Error:

Client Realm:

Client Name:

Server Realm: ADMIN.MSU

Server Name: krbtgt/ADMIN.MSU

Target Name: krbtgt/*** Email address is removed for privacy ***

Error Text:

File: e

Line: 9fe

Error Data is in record data.

Has anyone seen this type of error befire?


Hi Jim_Hall_MWSU,

Thank you for posting in Microsoft Answers!

0x19 (KDC_ERR_PREAUTH_REQUIRED) "Additional pre-authentication"

The client did not send pre-authorization, or did not send the appropriate type of pre-authorization, to receive a ticket. The client will retry with the appropriate kind of pre-authorization (the KDC returns the pre-authentication type in the error). Many Kerberos implementations will start off without preauthenticated data and only add it in a subsequent request when it sees this error. In this case, this error can safely be ignored.

Method 1: If you confirm that no action is required and you do not want these events to keep coming, you could enable the “Do not require Kerberos preauthentication” option for that user account in Active directory users & computers -> <user> properties -> account” (but this will lower the security level for that account).

Also check out the following link and follow the steps mentioned by Mervyn Zhang to resolve this issue:



Divya R – Microsoft Support.

Visit our Microsoft Answers Feedback Forum and let us know what you think.

7 people found this reply helpful


Was this reply helpful?

Sorry this didn't help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.


Question Info

Last updated December 18, 2020 Views 70,607 Applies to: