KB2359: Bad Hyper-V Username Logon Attempt

KB ID: 2359
Product: Veeam ONE
Version: 9.x
Published: 2017-10-12
Last Modified: 2017-10-12

Challenge

Veeam ONE raises the following event-based alarm: Bad Hyper-V username logon attempt.

Cause

The Bad Host Username alert suggests that someone is attempting to access the host with an invalid username or password.

Solution

Veeam ONE raises the Bad Hyper-V username logon attempt alarm based on the Hyper-V event that is received from the MS Hyper-V host:

4625 Microsoft-Windows-Security-Auditing

The further issue troubleshooting should be performed on the MS Hyper-V server side.

If you would like to find out the root cause of the event, investigate the Security log on your Hyper-V host > Computer Management > Event Viewer > Windows Logs. Find the event record mentioned above and see the details.

More Information

In case you cannot find the event record or the record details refer to Veeam ONE server, please contact Veeam Support for further assistance.

Couldn't find what you were looking for?

Below you can submit an idea for a new knowledge base article.

Request new content

Report a typo on this page:

Please select a spelling error or a typo on this page with your mouse and press CTRL + Enter to report this mistake to us. Thank you!

Business type

Cloud solutions

Industry

Infrastructure

Application availability

Availability for the Always-On Enterprise

Virtual Workloads (VMware and Hyper-V)

Cloud and Physical Workloads

Disaster Recovery Orchestration

Small Business under 250 employees

Cloud and Service Providers

Monitoring and Management

Free Tools

Partner Products

Need Information?

Ready to Buy?

Attend Live

On-Demand

Get Engaged

Join the Veeam Cloud & Service Provider Program

Veeam-powered Services Directory

Already a VCSP?

Become a Partner

Already a Partner?

Global Alliance Partners

Company

News

Community

Get support

Documentation

Downloads

Bad Hyper-V Username Logon Attempt