The information in this article applies to:
File System Auditor 2.x
SYMPTOM:
"Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON"
Event viewer on the Active Node
Figure 1
![[image]](https://support.quest.com/KBArticleImages/SL3261/a4823153.jpg)
Figure 2
CAUSE:
This usually occurs in clustered environments when an attempt is made to access resource using Windows NT authentication to impersonate the client connecting. In this example this event was triggered by a failover. More details can be found at: http://blogs.msdn.com/b/sql_protocols/archive/2006/08/10/694657.aspx
WORKAROUND:
The simplest fix is to grant access to the 'NT AUTHORITY\ANONYMOUS LOGON” in the SQL Security logins.
Open the SQL Security Logins in SQL Management Studio, (figure 3)
![[image]](https://support.quest.com/KBArticleImages/SL3261/f4dca2ec.jpg)
Figure 3
Leave the default (Public) permission) or grant the minimum necessary, (figure 4).
![[image]](https://support.quest.com/KBArticleImages/SL3261/19659113.jpg)
Figure 4
Related Articles or Solutions:
http://blogs.msdn.com/b/sql_protocols/archive/2006/08/10/694657.aspx
