Here's an odd one. Anyone run into this before?

I am at a client and have put together a package based on this answer to install on multiple flavors of Windows automagically along with a set of config files.

The batch file runs fine and installs Splunk with the custom config, but Splunk does not run. When attempting to start it from the services panel after the install, it says can not log on (to the domain account).

Going into the Log On section of the splunkd service properties, a hidden password and the correct user entered in the batch file are there, and re-entering the password gives a "granted permission to log on as a service" message and allows Splunk to start. The odd thing is that upon un-installing Splunk and re-running the batch file to install, it runs perfectly.

Anyone see this before? Is it a Splunk thing? It's almost as if Splunk isn't passing Windows the proper password in the msiexec line, but when entered in the properties window Windows caches the password and uses it on further installs properly.

Here is the msiexec used. I have tried with and without quotes around the username and password, neither runs. msiexec.exe /i "%SPLUNK_MSI%" INSTALLDIR="%LOC%" RBG_LOGON_INFO_USER_CONTEXT=2 IS_NET_API_LOGON_USERNAME=DOM\user IS_NET_API_LOGON_PASSWORD=password LAUNCHSPLUNK=0 WINEVENTLOGAPPCHECK=0 WINEVENTLOGSYSCHECK=0 WINEVENTLOGSECCHECK=0 SPLUNK_APP="" /QUIET