An unauthorized delegate operation was attempted

twitterlinkedinmail

I enabled the use of Sefautil using the instructions located here.

I wanted to add myself as a delegate for another user to allow users to send Lync/Skype for Business Meetings calendar invites on behalf of another user.

I ran this command:

.\Sefautil.exe /Server:LyncFe01.domain.com sip:John.Smith@domain.com /adddelegate:Habib.Mankal@domain.com

everytime i ran the above command it would not take and the below error would be in the Front End Server – Lync Server event logs.

An unauthorized delegate operation was attempted.

In the past 2 minutes the server received 18 unauthorized delegation operations. The last attempt was by habib.mankal@domain.com trying to act as a delegate for John.Smith@domain.com
Cause: Either the delegate relation is not configured correctly or this is an attacker.
Resolution:
No action needed unless the number of these events is large.

Error 10/28/2015 4:15:03 PM LS User Services 32099 (1006)
Log Name: Lync Server
Source: LS User Services
Date: 10/28/2015 4:15:03 PM
Event ID: 32099
Task Category: (1006)
Level: Error
Keywords: Classic
User: N/A
Computer: LyncFE01.domain.com
Description:
An unauthorized delegate operation was attempted.

In the past 2 minutes the server received 18 unauthorized delegation operations. The last attempt was by habib.mankal@domain.com trying to act as a delegate for John.Smith@domain.com
Cause: Either the delegate relation is not configured correctly or this is an attacker.
Resolution:
No action needed unless the number of these events is large.
Event Xml:
<Event xmlns=”http://schemas.microsoft.com/win/2004/08/events/event”>
<System>
<Provider Name=”LS User Services” />
<EventID Qualifiers=”50158″>32099</EventID>
<Level>2</Level>
<Task>1006</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime=”2015-10-28T20:15:03.000000000Z” />
<EventRecordID>37778</EventRecordID>
<Channel>Lync Server</Channel>
<Computer>LyncFE01.domain.com</Computer>
<Security />
</System>
<EventData>
<Data>2</Data>
<Data>18</Data>
<Data>habib.mankal@domain.com</Data>
<Data>John.Smith@domain.com</Data>
</EventData>
</Event>

No matter what I tried I could not get the user to be added, what fixed my issues was restarting Front End Service and re-ran the command and the delegated user was added.

twitterlinkedinmail

Leave a Reply

Your email address will not be published. Required fields are marked *

*