Version 16.3.6989 running on 2012 R2. We have an account that has been turned into a Domain Administrator twice over the last 3 days. Both times spam emails end up in the inbox from "JP Momfort" even though any emails to this account are supposed to be forwarded to another account and then deleted. In both cases I noticed that there was a "xxx-popLog.log" created and in both cases it contained the same message (not from the same ip address), The error was,
01:28:49 [54.167.30.32][60298714] Exception negotiating TLS session: System.ArgumentException: The path is not of a legal form.
at System.IO.Path.LegacyNormalizePath(String path, Boolean fullCheck, Int32 maxPathLength, Boolean expandShortPaths)
at System.IO.Path.GetFullPathInternal(String path)
at System.Security.Cryptography.X509Certificates.X509Certificate.LoadCertificateFromFile(String fileName, Object password, X509KeyStorageFlags keyStorageFlags)
at MailService.TcpServerLib.Common.PooledTcpItem.ConvertToSSL(IPBindingPort setting, Log log, String sessionId)
at MailService.TcpServerLib.Common.PooledTcpItem.ConvertToSSL(IPBindingPort setting)
at MailService.TcpServerLib.POP.POPSession.#jdb()
After the first change 3 days ago I deleted the account and recreated it with a new password. I also changed the real domain admin's pwd even though there is no outside access possible to it. Thoughts?
Is it possible to flag an account so that it can never be turned into a domain admin?