Toon posts:

Server 2008 Group policy problemen

Pagina: 1
Acties:

donderdag 18 september 2008 08:21

Acties:

Verwijderd

Topicstarter
Op een Windows 2008 Server die functioneerd als domain controller Server krijg ik steeds de volgende melding:

Log Name: System
Source: Microsoft-Windows-GroupPolicy
Date: 9/18/2008 7:37:59 AM
Event ID: 1128
Task Category: None
Level: Warning
Keywords:
User: SYSTEM
Description:
The Group Policy Client Side Extension Security may have caused the Group Policy Service to terminate unexpectedly. To prevent further failures in the Group Policy Service, this extension has been temporarily disabled until after the next system restart. Group Policy settings managed by this extension may no longer be enforced until the system is restarted. The vendor of this extension should be contacted if this issue recurs.

Ik kan hier geen oplossing voor vinden.

Wat heb ik gecontroleerd/geprobeerd/gevonden:
Sysvol is geshared
Microsoft zegt hier het volgende over.
Eventid.net zegt hier niks over.
Google geeft ook niet het gewenste resultaat

DCdiag output

Doing primary tests

Starting test: DFSREvent
There are warning or error events within the last 24 hours after the
SYSVOL has been shared. Failing SYSVOL replication problems may cause
Group Policy problems.
......................... servername01 failed test DFSREvent
Starting test: SystemLog
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:12:39
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:12:39
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:17:43
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:17:43
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:22:47
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:22:47
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:27:51
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:27:51
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:32:55
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:32:55
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:37:59
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:37:59
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:43:04
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:43:04
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:48:08
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:48:08
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:53:12
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:53:12
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:58:16
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 07:58:16
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 08:03:20
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
An Warning Event occurred. EventID: 0x00000468
Time Generated: 09/18/2008 08:03:20
EvtFormatMessage failed, error 15100 The resource loader failed to f
ind MUI file..
(Event String (event log = System) could not be retrieved, error
0x3afc)
LocatorCheck

[ Voor 28% gewijzigd door Verwijderd op 18-09-2008 08:33 ]

donderdag 18 september 2008 08:33

Acties:
  • Zoetjuh
  • Registratie: Oktober 2001
  • Laatst online: 10-01-2024

Zoetjuh

Wat is het resultaat van rsop.msc vs het geplande policy-resultaat?
Heb je verder additionele policy-templates ingeladen?

Ik zou vermoeden dat je dan toch zo ziet welke policy voor het probleem zorgt.

donderdag 18 september 2008 08:41

Acties:

Verwijderd

Topicstarter
Zoetjuh schreef op donderdag 18 september 2008 @ 08:33:
Wat is het resultaat van rsop.msc vs het geplande policy-resultaat?
Heb je verder additionele policy-templates ingeladen?

Ik zou vermoeden dat je dan toch zo ziet welke policy voor het probleem zorgt.
Als ik rsop.msc draai zie ik het volgende

Daci failed:
Thursday, September 18, 2008 9:00:27 AM
Daci failed due to the error listed below.
An attempt was made to load a program with an incorrect format.

Security failed:
Thursday, September 18, 2008 9:00:27 AM
Security failed due to the error listed below.
An attempt was made to load a program with an incorrect format.

Hoe kan ik nu achterhalen welke gpo een probleem veroorzaakt ?


Heb je verder additionele policy-templates ingeladen?
ja ik heb aan bepaalde ou's policy's gekoppeld

[ Voor 41% gewijzigd door Verwijderd op 18-09-2008 09:23 ]

donderdag 18 september 2008 14:56

Acties:
  • alt-92
  • Registratie: Maart 2000
  • Niet online

alt-92

ye olde farte

Verwijderd schreef op donderdag 18 september 2008 @ 08:41:
Hoe kan ik nu achterhalen welke gpo een probleem veroorzaakt ?
Gpresult -v draaien lijkt me ook wel handig, desnoods leg je via gpmc de resultaten daarvan naast je modeling uitdraai.

ik heb een 864 GB floppydrive! - certified prutser - the social skills of a thermonuclear device

donderdag 18 september 2008 19:44

Acties:

Verwijderd

Topicstarter
alt-92 schreef op donderdag 18 september 2008 @ 14:56:
[...]

Gpresult -v draaien lijkt me ook wel handig, desnoods leg je via gpmc de resultaten daarvan naast je modeling uitdraai.
De foutmelding lijkt me niet te komen door een verkeerde gpo policy instelling?


Wat kan ik opmaken uit de gpresult.

GPO: Default Domain Controllers Policy
Policy: ShutdownPrivilege
Computer Setting: Administrators
Backup Operators
Server Operators
Print Operators

GPO: Default Domain Controllers Policy
Policy: AuditPrivilege
Computer Setting: LOCAL SERVICE
NETWORK SERVICE

GPO: Default Domain Controllers Policy
Policy: InteractiveLogonRight
Computer Setting: Administrators
Backup Operators
Account Operators
Server Operators
Print Operators

GPO: Default Domain Controllers Policy
Policy: CreatePagefilePrivilege
Computer Setting: Administrators

GPO: Default Domain Controllers Policy
Policy: BatchLogonRight
Computer Setting: IIS_IUSRS
DYNAMIEK\SQLServer2005MSSQLUser$DYNAMIEK01$DE
SKTOPAUTHORITY
Administrators
Backup Operators
Performance Log Users

GPO: Default Domain Controllers Policy
Policy: NetworkLogonRight
Computer Setting: Everyone
Administrators
Authenticated Users
ENTERPRISE DOMAIN CONTROLLERS
Pre-Windows 2000 Compatible Access

GPO: Default Domain Controllers Policy
Policy: SystemProfilePrivilege
Computer Setting: Administrators

GPO: Default Domain Controllers Policy
Policy: RemoteShutdownPrivilege
Computer Setting: Administrators
Server Operators

GPO: Default Domain Controllers Policy
Policy: BackupPrivilege
Computer Setting: Administrators
Backup Operators
Server Operators

GPO: Default Domain Controllers Policy
Policy: EnableDelegationPrivilege
Computer Setting: Administrators

GPO: Default Domain Controllers Policy
Policy: UndockPrivilege
Computer Setting: Administrators

GPO: Default Domain Controllers Policy
Policy: SystemEnvironmentPrivilege
Computer Setting: Administrators

GPO: Default Domain Controllers Policy
Policy: LoadDriverPrivilege
Computer Setting: Administrators
Print Operators

GPO: Default Domain Controllers Policy
Policy: IncreaseQuotaPrivilege
Computer Setting: LOCAL SERVICE
NETWORK SERVICE
Administrators
DYNAMIEK\SQLServer2005MSSQLUser$DYNAMIEK01$DE
SKTOPAUTHORITY

GPO: Default Domain Controllers Policy
Policy: ProfileSingleProcessPrivilege
Computer Setting: Administrators

GPO: Default Domain Controllers Policy
Policy: AssignPrimaryTokenPrivilege
Computer Setting: LOCAL SERVICE
NETWORK SERVICE
DYNAMIEK\SQLServer2005MSSQLUser$DYNAMIEK01$DE
SKTOPAUTHORITY

Security Options
----------------
GPO: Default Domain Policy
Policy: PasswordComplexity
Computer Setting: Not Enabled

GPO: Default Domain Policy
Policy: ClearTextPassword
Computer Setting: Not Enabled

GPO: Default Domain Policy
Policy: ForceLogoffWhenHourExpire
Computer Setting: Not Enabled

GPO: Default Domain Policy
Policy: RequireLogonToChangePassword
Computer Setting: Not Enabled

GPO: Default Domain Policy
Policy: LSAAnonymousNameLookup
Computer Setting: Not Enabled

GPO: Default Domain Policy
Policy: TicketValidateClient
Computer Setting: Enabled

GPO: Default Domain Controllers Policy
Policy: @wsecedit.dll,-59059
ValueName: MACHINE\System\CurrentControlSet\Control\Lsa\
LmCompatibilityLevel
Computer Setting: 3

GPO: Default Domain Controllers Policy
Policy: @wsecedit.dll,-59013
ValueName: MACHINE\System\CurrentControlSet\Services\NTD
S\Parameters\LDAPServerIntegrity
Computer Setting: 1

GPO: Default Domain Controllers Policy
Policy: @wsecedit.dll,-59043
ValueName: MACHINE\System\CurrentControlSet\Services\Lan
ManServer\Parameters\RequireSecuritySignature
Computer Setting: 1

GPO: Default Domain Controllers Policy
Policy: @wsecedit.dll,-59044
ValueName: MACHINE\System\CurrentControlSet\Services\Lan
ManServer\Parameters\EnableSecuritySignature
Computer Setting: 1

GPO: Default Domain Policy
Policy: @wsecedit.dll,-59058
ValueName: MACHINE\System\CurrentControlSet\Control\Lsa\
NoLMHash
Computer Setting: 1

GPO: Default Domain Controllers Policy
Policy: @wsecedit.dll,-59018
ValueName: MACHINE\System\CurrentControlSet\Services\Net
logon\Parameters\RequireSignOrSeal
Computer Setting: 1

Event Log Settings
------------------
N/A

Restricted Groups
-----------------
N/A

System Services
---------------
N/A

Registry Settings
-----------------
N/A

File System Settings
--------------------
N/A

Public Key Policies
-------------------
N/A

Administrative Templates
------------------------
N/A


USER SETTINGS
--------------
CN=Clooser.nl,CN=Users,DC=dynamiek,DC=dynamiek,DC=nu
Last time Group Policy was applied: 9/18/2008 at 7:31:58 PM
Group Policy was applied from: dynamiek01.dynamiek.dynamiek.nu
Group Policy slow link threshold: 500 kbps
Domain Name: DYNAMIEK
Domain Type: Windows 2000

Applied Group Policy Objects
-----------------------------
Local Group Policy

The following GPOs were not applied because they were filtered out
-------------------------------------------------------------------
Default Domain Policy
Filtering: Not Applied (Empty)

The user is a part of the following security groups
---------------------------------------------------
Domain Users
Everyone
BUILTIN\Administrators
Remote Desktop Users
BUILTIN\Users
Certificate Service DCOM Access
BUILTIN\Pre-Windows 2000 Compatible Access
REMOTE INTERACTIVE LOGON
NT AUTHORITY\INTERACTIVE
NT AUTHORITY\Authenticated Users
This Organization
LOCAL
Domain Admins
Group Policy Creator Owners
Enterprise Admins
Schema Admins
Denied RODC Password Replication Group
High Mandatory Level

The user has the following security privileges
----------------------------------------------

Bypass traverse checking
Manage auditing and security log
Back up files and directories
Restore files and directories
Change the system time
Shut down the system
Force shutdown from a remote system
Take ownership of files or other objects
Debug programs
Modify firmware environment values
Profile system performance
Profile single process
Increase scheduling priority
Load and unload device drivers
Create a pagefile
Adjust memory quotas for a process
Remove computer from docking station
Perform volume maintenance tasks
Impersonate a client after authentication
Create global objects
Change the time zone
Create symbolic links
Enable computer and user accounts to be trusted for delegation
Increase a process working set
Add workstations to domain

Resultant Set Of Policies for User
-----------------------------------

Software Installations
----------------------
N/A

Logon Scripts
-------------
Logoff Scripts
--------------
GPO: Local Group Policy
Name: SLlogoffScript.cmd
Parameters:
LastExecuted: This script has not yet been executed.

Public Key Policies
-------------------
N/A

Administrative Templates
------------------------
N/A

Folder Redirection
------------------
N/A

Internet Explorer Browser User Interface
----------------------------------------
N/A

Internet Explorer Connection
----------------------------
N/A

Internet Explorer URLs
----------------------
N/A

Internet Explorer Security
--------------------------
N/A

Internet Explorer Programs
--------------------------
N/A

donderdag 18 september 2008 21:50

Acties:
  • alt-92
  • Registratie: Maart 2000
  • Niet online

alt-92

ye olde farte

Nou, dan maar even zo (aangezien alleen lange lijstjes met output posten zonder er ook zelf naar te kijken weinig nut heeft)..

Je krijgt een CSE foutmelding.
Dan ga je kijken welke GPO CSE enabled is, en schakel je die tijdelijk uit.

Lijkt me niet dat we voor jou moeten gaan troubleshooten, dat mag je gerust zelf doen.

ik heb een 864 GB floppydrive! - certified prutser - the social skills of a thermonuclear device

woensdag 24 september 2008 11:24

Acties:

Verwijderd

Topicstarter
Na het disableen van diverse policies heb alle zelf aangemaakte group policies verwijderd.
Hierna de default group policies gerestored via de volgende optie: dcgpofix /target:both

Toch blijft de melding terugkomen, heeft iemand nog een idee ?

[ Voor 11% gewijzigd door Verwijderd op 24-09-2008 12:13 ]

donderdag 25 september 2008 19:51

Acties:

Verwijderd

Topicstarter
nog iemand een idee ?

zondag 28 september 2008 09:27

Acties:
  • Koffie
  • Registratie: Augustus 2000
  • Laatst online: 22:44

Koffie

Koffiebierbrouwer

Braaimeneer

Move PNS > WSS

Tijd voor een nieuwe sig..

maandag 6 oktober 2008 09:40

Acties:

Verwijderd

Topicstarter
Ook hier niemand ?
Pagina: 1
Reageer

Apple iPhone 17 LG OLED evo G5 Google Pixel 10 Samsung Galaxy S25 Star Wars: Outlaws Nintendo Switch 2 Apple AirPods Pro (2e generatie) Sony PlayStation 5 Pro

Tweakers is onderdeel van DPG Media B.V.
Alle rechten voorbehouden - Auteursrecht © 1998 - 2026 Hosting door TrueFullstaq