Error Message

Event ID:      41352
Task Category: EVIndexVolumesProcessor
Level:         Error
Description:
The processing of the Rebuild Sub task has stopped following errors. Reason: Undefined|
Error Type: NonCritical|Description: Retrieving the COM class factory for remote component with CLSID {3A92686F-E5E8-4505-ABB5-49E5F725617A} failed due to the following error: 80070005.

The System Event Viewer Log may also include the events below:

Log Name:      System
Source:        Microsoft-Windows-DistributedCOM
Event ID:      10016
Task Category: None
User:          ANONYMOUS LOGON
Computer:      evserver.ev.local
Description:
The application-specific permission settings do not grant Remote Activation permission for the COM Server application with CLSID {3A92686F-E5E8-4505-ABB5-49E5F725617A} and APPID
{9FB267AD-C6CE-4084-A18F-5100B54964B3}  to the user NT AUTHORITY\ANONYMOUS LOGON SID (S-1-5-7) from address ###.###.###.###. This security permission can be modified using the Component Services administrative tool.

Log Name:      System
Source:        Microsoft-Windows-Security-Kerberos
Event ID:      4
Level:         Error
Keywords:      Classic
User:          N/A
Computer:      evserver.ev.local

Description:
The Kerberos client received a KRB_AP_ERR_MODIFIED error from the server Hostname$. The target name used was RPCSS/evserveralias. This indicates that the target server failed to decrypt the ticket provided by the client. This can occur when the target server principal name (SPN) is registered on an account other than the account the target service is using. Please ensure that the target SPN is registered on, and only registered on, the account used by the server. This error can also happen when the target service is using a different password for the target service account than what the Kerberos Key Distribution Center (KDC) has for the target service account. Please ensure that the service on the server and the KDC are both updated to use the current password. If the server name is not fully qualified, and the target domain (company.com) is different from the client domain (company.com), check if there are identically named server accounts in these two domains, or use the fully-qualified name to identify the server.
 

The EV Alias (CNAME) is not associated to the Service Principal Name (SPN) of the EV Server Hostname. An example of why this may occur is when the EV server is migrated to new hardware.

To verify:

Run Command Prompt as administrator -

type: setspn /L oldevserver hostname --- (If applicable)

type: setspn /L currentevserver hostname

Note: A domain Admin level account must be used to run the following commands.

If the evserveralias is associated to an oldeverserver hostname.

type: setspn -D HOST/evserveralias oldeverserver hostname.

Repeat for each alias including the fully qualified domain name (FQDN).

To add the evserveralias to the SPN of the currentevserver hostname.

type: setspn -A HOST/evserveralias currentevserver hostname

Repeat for each alias including the FQDN.

Reboot the EV server so that the SPN may be applied.