LSASS.exe When trying to update a password the return status indicates that the value provided as the current password is not correct.

Password itself does not matter here (see some MS articles - it seems to be more as registry corruption issue), but admin account name might if renamed.  Did you try this with same admin account as on old machine?

I am also doing a disaster recovery test of a Windows 2003 SP2 (not R2) server and experiencing exactly the same error.  The backup was created with 7.6 build 142, and the restore is being attempted with the latest 7.6.0.7 release of the client.  The networker server is also running 7.6.0.7.  I can confirm that the local admin password was set exactly the same as on the production server. 

The exact error message is: "lsass.exe - System Error - When trying to update a password, this return status indicates that the valude provided as the current password is not correct."

This error message occurs after initiating the reboot following the restore of the VSS save sets and results in continuous reboots of the server until I power off the VM.

I also noted the following error in the recovery log:

17474:winworkr: Preparing for VSS SYSTEM BOOT recover, please wait...

Requesting 1 recover session(s) from server.

Recovering Writer: Registry Writer.

C:\WINDOWS\Repair\Backup\BootableSystemState\Registry\default

C:\WINDOWS\Repair\Backup\BootableSystemState\Registry\SAM

C:\WINDOWS\Repair\Backup\BootableSystemState\Registry\SECURITY

C:\WINDOWS\Repair\Backup\BootableSystemState\Registry\software

C:\WINDOWS\Repair\Backup\BootableSystemState\Registry\system

Recovering Writer: COM+ REGDB Writer.

C:\WINDOWS\Repair\Backup\BootableSystemState\ComRegistrationDatabase\ComRegDb.bak

Recovering Legacy Component: ASR System Files.

C:\WINDOWS\repair\ntdll.ASR

C:\WINDOWS\repair\smss.ASR

Legacy Component: ASR System Files has been successfully recovered.

Writer: ASR System Files has been successfully recovered.

Restoring the COM+ database, please wait...

Restored the COM+ database

Writer: COM+ REGDB Writer has been successfully recovered.

PendingFileRenameOperations: cannot create value, Insufficient system resources exist to complete the requested service.

.

Fatal Error: Recovery operation failed.

.  The system continually reboots with the same error over and over again.

Help from this community would very much be appreciated - however I will likely log an SR as this is a critical situation for us.

Thanks in advance.

Thanks for your quick response Mike.  Unfortunately that solution seems to relate to XP, and I am dealing with Windows Server 2003 SP2, though I am aware of the simularities.

I'm also a little confused.  Does this imply that my production server has a corruption which got transferred to my backup tapes?  Or is there a problem with my newly rebuilt server?  The only credentials which exist on the new server is that of local administrator.  Prior to attempting the restore, I can log in to either server with those credentials and the same password without encoutering an error.

I will reread the article again and see if I missed the details - I may be over reacting slightly out of frustration as I have wasted my entire day trying to get this restore done.  I'm just thankful I created a snapshot of the system before attempting the restore.  Makes starting over a lot easier.

Thanks again for your response.  Please feel free to expand if you think of anything.

Best regards.

The issue is not specifically XP or W2K3.  The issue is with LSASS which is a MS security module.

Local Security Authority Subsystem Service (LSASS), is a process in Microsoft Windows operating systems that is responsible for enforcing the security policy on the system. It verifies users logging on to a Windows computer or server, handles password changes, and creates access tokens. It also writes to the Windows Security Log.

Forcible termination of lsass.exe will result in the Welcome screen losing its accounts, prompting a restart of the machine.

One question would then be was the server rebuilt with the same W2K3 media.  i.e. OEM vs Retail or MSDN.

The MS article will be of help but it will be more what was different with the current deployment.

Hi,

i read your article and facing the same problem.

I noticed that my recover is performed on a machine with a different license type, is it an EMC prerequise ?

EMC support told us to upgrade or version from 75.3.1 to 7.5.3.3 but with no success.

Thanks for your feedback

Hi Jumbo,

Did you get any answer or solution on this? I have got exactly the same problem today when I did a DR test on one of our virtual servers. I am very curious to know if you managed to get the server running again.