Problems with firewall policy on XP

  • Thread starter Thread starter JD
  • Start date Start date
J

JD

We discovered that although we disable the firewall through a domain
policy, some XP Service Pack 2 machines still have the firewall
enabled.

These workstations are generating events1030 and 1058 errors in the
event log indicating problems with policy application. I've read a lot
of things on the internet about these errors including issues with the
DFS client, DNS configuration problems, and other things that were
remedied by XP SP2 - but I've confirmed these things are correct.

When we log onto these machines with a domain ID and run GPRESULT, we
get the following message, but we do not get a message when we log on
with a local ID:

INFO: The User "domain\username" does not have RSOP data.

Looking further into the problem, I receive an "Access Denied" error
when attempting to connect to \\domain.com\sysvol directory although I
am able to connect to this share with the same domain ID on different
XP workstations.

Any ideas why some of our XP machines are having this problem?

Thanks!

<JD>
 
All kinds of ideas come to mind, but in your case it could be specific to
just one :)

What else do you see in the system log, especially at startup time? That'll
help to narrow down the possibilities more than anything.

Al


"JD" <dopamine@mail.com> wrote in message
news:1183311749.558456.26690@i38g2000prf.googlegroups.com...
> We discovered that although we disable the firewall through a domain
> policy, some XP Service Pack 2 machines still have the firewall
> enabled.
>
> These workstations are generating events1030 and 1058 errors in the
> event log indicating problems with policy application. I've read a lot
> of things on the internet about these errors including issues with the
> DFS client, DNS configuration problems, and other things that were
> remedied by XP SP2 - but I've confirmed these things are correct.
>
> When we log onto these machines with a domain ID and run GPRESULT, we
> get the following message, but we do not get a message when we log on
> with a local ID:
>
> INFO: The User "domain\username" does not have RSOP data.
>
> Looking further into the problem, I receive an "Access Denied" error
> when attempting to connect to \\domain.com\sysvol directory although I
> am able to connect to this share with the same domain ID on different
> XP workstations.
>
> Any ideas why some of our XP machines are having this problem?
>
> Thanks!
>
> <JD>
>
 
On Jul 1, 11:11 am, "Al Mulnick" <amulnick_No_S...@ncDOTrr.com> wrote:
> All kinds of ideas come to mind, but in your case it could be specific to
> just one :)
>
> What else do you see in the system log, especially at startup time? That'll
> help to narrow down the possibilities more than anything.
>
> Al
>
> "JD" <dopam...@mail.com> wrote in message
>
> news:1183311749.558456.26690@i38g2000prf.googlegroups.com...
>
>
>
> > We discovered that although we disable the firewall through a domain
> > policy, some XP Service Pack 2 machines still have the firewall
> > enabled.
>
> > These workstations are generating events1030 and 1058 errors in the
> > event log indicating problems with policy application. I've read a lot
> > of things on the internet about these errors including issues with the
> > DFS client, DNS configuration problems, and other things that were
> > remedied by XP SP2 - but I've confirmed these things are correct.
>
> > When we log onto these machines with a domain ID and run GPRESULT, we
> > get the following message, but we do not get a message when we log on
> > with a local ID:
>
> > INFO: The User "domain\username" does not have RSOP data.
>
> > Looking further into the problem, I receive an "Access Denied" error
> > when attempting to connect to \\domain.com\sysvol directory although I
> > am able to connect to this share with the same domain ID on different
> > XP workstations.
>
> > Any ideas why some of our XP machines are having this problem?
>
> > Thanks!
>
> > <JD>- Hide quoted text -
>
> - Show quoted text -

nothing significant in the logs after boot-up. Interestingly, the 1030
and 1058 errors (source Userenv) get generated in the log as both the
user and the SYSTEM account, if that helps.
TIA,
<JD>
 
Is this you?
http://support.microsoft.com/kb/842804

The mupcache would be of the most interest. Before you do anything with
either of these, have a look at the event logs on the domain controllers for
more information. dcdiag is a useful utility as well that might shed some
light on issues if they are occuring at that level.

Al



"JD" <dopamine@mail.com> wrote in message
news:1183336541.532055.313820@n60g2000hse.googlegroups.com...
> On Jul 1, 11:11 am, "Al Mulnick" <amulnick_No_S...@ncDOTrr.com> wrote:
>> All kinds of ideas come to mind, but in your case it could be specific to
>> just one :)
>>
>> What else do you see in the system log, especially at startup time?
>> That'll
>> help to narrow down the possibilities more than anything.
>>
>> Al
>>
>> "JD" <dopam...@mail.com> wrote in message
>>
>> news:1183311749.558456.26690@i38g2000prf.googlegroups.com...
>>
>>
>>
>> > We discovered that although we disable the firewall through a domain
>> > policy, some XP Service Pack 2 machines still have the firewall
>> > enabled.
>>
>> > These workstations are generating events1030 and 1058 errors in the
>> > event log indicating problems with policy application. I've read a lot
>> > of things on the internet about these errors including issues with the
>> > DFS client, DNS configuration problems, and other things that were
>> > remedied by XP SP2 - but I've confirmed these things are correct.
>>
>> > When we log onto these machines with a domain ID and run GPRESULT, we
>> > get the following message, but we do not get a message when we log on
>> > with a local ID:
>>
>> > INFO: The User "domain\username" does not have RSOP data.
>>
>> > Looking further into the problem, I receive an "Access Denied" error
>> > when attempting to connect to \\domain.com\sysvol directory although I
>> > am able to connect to this share with the same domain ID on different
>> > XP workstations.
>>
>> > Any ideas why some of our XP machines are having this problem?
>>
>> > Thanks!
>>
>> > <JD>- Hide quoted text -
>>
>> - Show quoted text -
>
> nothing significant in the logs after boot-up. Interestingly, the 1030
> and 1058 errors (source Userenv) get generated in the log as both the
> user and the SYSTEM account, if that helps.
> TIA,
> <JD>
>
 

Similar threads

P
Secure Windows Server 2012/R2 workloads with options from Azure
Replies
0
Views
24
Patrick Widjaja
P
AWS
Windows Admin Center version 2306 is now generally available!
Replies
0
Views
120
AWS
AWS
AWS
Exploring Azure Firewall's Threat Protection
Replies
0
Views
107
AWS
AWS
AWS
Windows Admin Center version 2306 is now available in public preview!
Replies
0
Views
138
AWS
AWS
AWS
September 2023 - Microsoft 365 US Public Sector Roadmap Newsletter
Replies
0
Views
157
AWS
AWS
Back
Top