Policy change kills access to template
From: Peter J. Persing (peter_at_persing.org)
Date: 10/12/03
- Next message: Steven L Umbach: "Re: Deny deletion of a folder"
- Previous message: Netmasker: "Re: Deny deletion of a folder"
- Next in thread: Steven L Umbach: "Re: Policy change kills access to template"
- Reply: Steven L Umbach: "Re: Policy change kills access to template"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 12 Oct 2003 13:58:55 -0600
On a Windows 2003 domain controller, if I go into either Domain Security
Policy or Domain Controller Security Policy, local policies, and make ANY
changes in Audit Policies, User Rights Assignment or Security Options the
changes appear to complete successfully. But if I close the snap-in, and
reopen it I get a message "Windows cannot open the template file". In the
event log I get Event 1001 from SecCli that says "Security policy cannot be
propagated. Cannot access the template. Error code = -536870656". The error
message then gives the path to the relevant GptTmpl.inf file, which I can
access just fine. It does not appear to be corrupt, and in fact before
making any changes, all existing security policies are applied just fine.
When I say ANY changes can cause this, I mean something as minor as removing
or adding an audit policy.
Anyone run into this before?
- Next message: Steven L Umbach: "Re: Deny deletion of a folder"
- Previous message: Netmasker: "Re: Deny deletion of a folder"
- Next in thread: Steven L Umbach: "Re: Policy change kills access to template"
- Reply: Steven L Umbach: "Re: Policy change kills access to template"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
