My customer has 2 DSFW servers running over OES2 SP2 servers. Both are DC at my dsfw domain.

The following message error appear at kdc.log file:

-------------------------------------------------------------------------------------------------
May 17 11:37:39 hosmadfs1 krb5kdc[6526](info): TGS_REQ (7 etypes {23 -133 -128 3 1 24 -135}) 10.6.169.17: LOOKING_UP_SERVER:
authtime 0, 09750933710@HOSMAD.MB for HNMDBA04269$@HOSMAD.MB, Naming violation
-------------------------------------------------------------------------------------------------

At /var/log/messages appears the following entries about this issue:

-------------------------------------------------------------------------------------------------
May 17 11:37:36 hosmadfs1 krb5kdc: [KDC] Regenerating authorization data for cross-realm client 09750933710@HOSMAD.MB
May 17 11:37:36 hosmadfs1 krb5kdc: [KDC] Regenerating authorization data for cross-realm client HNMDBA04269$@HOSMAD.MB
May 17 11:37:36 hosmadfs1 xadsd: [SECURITY] Impersonated user HOSMAD\HNMDBA04269$
May 17 11:37:37 hosmadfs1 xadsd: [SECURITY] Impersonated user HOSMAD\HNMDBA04269$
-------------------------------------------------------------------------------------------------

Anyone known about what is it?