I am seeing the following Event ID: 3, Source:  Security-Kerberos error in my System event log.

A Kerberos Error Message was received:

on logon session ADMIN.MSU\mm207a-044068$

Client Time:

Server Time: 20:40:44.0000 12/8/2009 Z


Extended Error:

Client Realm:

Client Name:

Server Realm: ADMIN.MSU

Server Name: krbtgt/ADMIN.MSU

Target Name: krbtgt/*** Email address is removed for privacy ***

Error Text:

File: e

Line: 9fe

Error Data is in record data.

Has anyone seen this type of error befire?


Hi Jim_Hall_MWSU,

Thank you for posting in Microsoft Answers!

0x19 (KDC_ERR_PREAUTH_REQUIRED) "Additional pre-authentication"

The client did not send pre-authorization, or did not send the appropriate type of pre-authorization, to receive a ticket. The client will retry with the appropriate kind of pre-authorization (the KDC returns the pre-authentication type in the error). Many Kerberos implementations will start off without preauthenticated data and only add it in a subsequent request when it sees this error. In this case, this error can safely be ignored.

Method 1: If you confirm that no action is required and you do not want these events to keep coming, you could enable the “Do not require Kerberos preauthentication” option for that user account in Active directory users & computers -> <user> properties -> account” (but this will lower the security level for that account).

Also check out the following link and follow the steps mentioned by Mervyn Zhang to resolve this issue:



Divya R – Microsoft Support.

Visit our Microsoft Answers Feedback Forum and let us know what you think.

4 people were helped by this reply


Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.


Question Info

Last updated July 30, 2020 Views 67,882 Applies to: