Event 4653 – IKE authentication credentials are unacceptable RRS feed

  • Question

  • Trying to implement IPSec between domain joined W2K8 and W2K12 in transport mode using Kerberos authentication and GPO to configure Advanced Security.

    After some time member servers lose connectivity (IPsec and GPO) and see  "Event 4653 - IKE authentication credentials are unacceptable".

    Since these are virtual machines, could these Kerberos tickets become invalid due to time differences when a VM is paused, un-paused and reverted from snapshots? Are there any known time issues when virtualizing W2K8 servers?

    I tried researching this event specifically with no luck. Your assistance is appreciated. 

    Thank you!

    Thursday, September 26, 2013 2:19 AM