Event ID 1222 when you create a Windows Server 2012 failover cluster

Article translations Article translations
Article ID: 2770582 - View products that this article applies to.
Expand all | Collapse all

Symptoms

When you create a Windows Server 2012 failover cluster, the following event is logged in the System log:

Source: Microsoft-Windows-FailoverClustering
Event ID: 1222
Task Category: Network Name Resource
Description: The computer object associated with cluster network name resource could not be updated.

The text for the associated error code is: Unable to protect the Virtual Computer Object (VCO) from accidental deletion.

The cluster identity %ClusterName% may lack permissions required to update the object. Please work with your domain administrator to ensure that the cluster identity can update computer objects in the domain.

Cause

When you create a Windows Server failover cluster, a Cluster Computer object for the cluster name is created in Active Directory Domain Services (AD DS). The object is called a Cluster Name Object (CNO).

A new feature in Windows Server 2012 flags Cluster Computer objects to prevent them being deleted accidentally. If you do not have sufficient rights to the organizational unit (OU) in AD DS where the Computer objects are being created, an event is logged that notifies you that the cluster objects are not protected from accidental deletion.

Resolution

To resolve this issue, follow these steps:
  1. Start Active Directory Administrative Center, and then select the tree view.
  2. Select the CNO's organizational unit (OU).
  3. Locate and right-click the CNO, and then click Properties.
  4. Click to select the Protect from accidental deletion check box, and then click OK.
Note Cluster Computer objects that are not protected from accidental deletion have no adverse effect on the functionality of the cluster. If you are not concerned about the unintentional deletion of Cluster Computer objects, you can safely ignore this warning.

More information

To improve the level of protection and ability to recover from the accidental deletion of Custer Computer objects, we recommend that you enable the Active Directory Recycle Bin feature. For more information about how to do this, go to the following TechNet websites:
Step-by-step guide to the Active Directory Recycle Bin feature

How to configure accounts in Active Directory
For more information about the failover cluster security model, click the following article number to view the article in Microsoft Knowledge Base:
947049 Description of the failover cluster security model in Windows Server 2008
For more information about Cluster Computer Objects, go to the following MSDN website:
How to identify stale Cluster Computer objects
For more information about the Protect object from accidental deletion option, go to the following TechNet website:
How to preventing unwanted or accidental deletions and how to restore deleted objects in Active Directory

Properties

Article ID: 2770582 - Last Review: January 18, 2013 - Revision: 1.0
Applies to
  • Windows Server 2012 Standard
  • Windows Server 2012 Datacenter
Keywords: 
kbprb kbexpertiseadvanced kbsurveynew KB2770582

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com