topic HP SIM EventID 552 in Server Management - Systems Insight Manager https://community.hpe.com/t5/server-management-systems/hp-sim-eventid-552/m-p/4178090#M32618 I have a Windowns 2003 server running 2 network monitoring tools. IpSwitch Watsup gold and HP System Insight Manager 5.1. <BR /><BR />On that box, I am getting the following events over and over and over in the security events log. From what I've been able to dig up on the internet about this Event, it's simply a successful logon/logoff. so I don't understand why it's in my event log over and over and over. <BR />---------------------------------------------------------------------------------------------<BR />Logon attempt using explicit credentials:<BR /> Logged on user:<BR /> User Name: BRMONITOR$<BR /> Domain: TP<BR /> Logon ID: (0x0,0x3E7)<BR /> Logon GUID: {3f6c6fcc-00db-06f5-ddc5-9d80e26e1c60}<BR /> User whose credentials were used:<BR /> Target User Name: administrator<BR /> Target Domain: TP.TPBP.COM<BR /> Target Logon GUID: -<BR /><BR /> Target Server Name: brnav.tp.tpbp.com<BR /> Target Server Info: RPCSS/brnav.tp.tpbp.com<BR /> Caller Process ID: 472<BR /> Source Network Address: -<BR /> Source Port: -<BR />------------------------------------------------------------------------<BR /><BR />Logon attempt using explicit credentials:<BR /> Logged on user:<BR /> User Name: BRMONITOR$<BR /> Domain: TP<BR /> Logon ID: (0x0,0x3E7)<BR /> Logon GUID: {6490d67b-9992-290e-ede5-1507f76854d3}<BR /> User whose credentials were used:<BR /> Target User Name: administrator<BR /> Target Domain: tp<BR /> Target Logon GUID: -<BR /><BR /> Target Server Name: brmail.tp.tpbp.com<BR /> Target Server Info: brmail.tp.tpbp.com<BR /> Caller Process ID: 2796<BR /> Source Network Address: -<BR /> Source Port: -<BR />---------------------------------------------------------------------------<BR />Logon attempt using explicit credentials:<BR /> Logged on user:<BR /> User Name: BRMONITOR$<BR /> Domain: TP<BR /> Logon ID: (0x0,0x3E7)<BR /> Logon GUID: {6490d67b-9992-290e-ede5-1507f76854d3}<BR /> User whose credentials were used:<BR /> Target User Name: administrator<BR /> Target Domain: tp<BR /> Target Logon GUID: -<BR /><BR /> Target Server Name: brfax.tp.tpbp.com<BR /> Target Server Info: brfax.tp.tpbp.com<BR /> Caller Process ID: 2796<BR /> Source Network Address: -<BR /> Source Port: -<BR />------------------------------------------------------------------------------<BR />Can someone please shed some light on this for me? <BR /><BR />I appreciate thje help in advance.<BR /><BR />Brandon Pembo Thu, 10 Apr 2008 19:57:12 GMT Brandon Pembo 2008-04-10T19:57:12Z HP SIM EventID 552 https://community.hpe.com/t5/server-management-systems/hp-sim-eventid-552/m-p/4178090#M32618 I have a Windowns 2003 server running 2 network monitoring tools. IpSwitch Watsup gold and HP System Insight Manager 5.1. <BR /><BR />On that box, I am getting the following events over and over and over in the security events log. From what I've been able to dig up on the internet about this Event, it's simply a successful logon/logoff. so I don't understand why it's in my event log over and over and over. <BR />---------------------------------------------------------------------------------------------<BR />Logon attempt using explicit credentials:<BR /> Logged on user:<BR /> User Name: BRMONITOR$<BR /> Domain: TP<BR /> Logon ID: (0x0,0x3E7)<BR /> Logon GUID: {3f6c6fcc-00db-06f5-ddc5-9d80e26e1c60}<BR /> User whose credentials were used:<BR /> Target User Name: administrator<BR /> Target Domain: TP.TPBP.COM<BR /> Target Logon GUID: -<BR /><BR /> Target Server Name: brnav.tp.tpbp.com<BR /> Target Server Info: RPCSS/brnav.tp.tpbp.com<BR /> Caller Process ID: 472<BR /> Source Network Address: -<BR /> Source Port: -<BR />------------------------------------------------------------------------<BR /><BR />Logon attempt using explicit credentials:<BR /> Logged on user:<BR /> User Name: BRMONITOR$<BR /> Domain: TP<BR /> Logon ID: (0x0,0x3E7)<BR /> Logon GUID: {6490d67b-9992-290e-ede5-1507f76854d3}<BR /> User whose credentials were used:<BR /> Target User Name: administrator<BR /> Target Domain: tp<BR /> Target Logon GUID: -<BR /><BR /> Target Server Name: brmail.tp.tpbp.com<BR /> Target Server Info: brmail.tp.tpbp.com<BR /> Caller Process ID: 2796<BR /> Source Network Address: -<BR /> Source Port: -<BR />---------------------------------------------------------------------------<BR />Logon attempt using explicit credentials:<BR /> Logged on user:<BR /> User Name: BRMONITOR$<BR /> Domain: TP<BR /> Logon ID: (0x0,0x3E7)<BR /> Logon GUID: {6490d67b-9992-290e-ede5-1507f76854d3}<BR /> User whose credentials were used:<BR /> Target User Name: administrator<BR /> Target Domain: tp<BR /> Target Logon GUID: -<BR /><BR /> Target Server Name: brfax.tp.tpbp.com<BR /> Target Server Info: brfax.tp.tpbp.com<BR /> Caller Process ID: 2796<BR /> Source Network Address: -<BR /> Source Port: -<BR />------------------------------------------------------------------------------<BR />Can someone please shed some light on this for me? <BR /><BR />I appreciate thje help in advance.<BR /><BR />Brandon Pembo Thu, 10 Apr 2008 19:57:12 GMT https://community.hpe.com/t5/server-management-systems/hp-sim-eventid-552/m-p/4178090#M32618 Brandon Pembo 2008-04-10T19:57:12Z Re: HP SIM EventID 552 https://community.hpe.com/t5/server-management-systems/hp-sim-eventid-552/m-p/4178091#M32619 I have the same issue and I'd like to find a solution that doesn't involve changing domain security group policy on this member server running HP SIM. Is there anything else that can be done to suppress these 552 Event ID's caused by HP SIM? Tue, 23 Dec 2008 20:06:44 GMT https://community.hpe.com/t5/server-management-systems/hp-sim-eventid-552/m-p/4178091#M32619 Thomas Chittenden 2008-12-23T20:06:44Z