Re: Access denied on remote registry access, from Win2003 sp1

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Try setting up failure auditing on the local machine hive (affected
machines). Run regedt32.exe then browse to HKLM, then
Edit|Permissions|Advanced|Auditing|Add|"everyone"|OK then check the "Failed"
box on Full Control, Set Value, Create Subkey, Enumerate Subkey, Delete,
Create Link

Then check the Event log security for errors.


--
Regards,

Dave Patrick ....Please no email replies - reply in newsgroup.
Microsoft Certified Professional
Microsoft MVP [Windows]
http://www.microsoft.com/protect

"Jan F. Jacobsen" wrote:
Hi ....



Your help would be greatly appreciated.



Having developed a native C win32 system, that runs as a service, as
LocalSystem account on a Windows 2003 server.



This service is accessing data (RegConnectRegistry() - read and writes) on
remote client's (NT4 sp6a, W2K sp4 XP sp2 and W2003)

registry (HKLM\Software aso.), connecting as a domain administrator. No
problem - every thing is ok.

But after updating the Windows 2003 server (the server with the service) to
service pack 1,

My service gets 'access denied' when trying to access remote registry on all
Windows 2000 professional client's,

but no problems on nt4, xp and w2003.



This problem can be replicated with help of native tools, like this:

1.. Use cmsasuser.exe on a windows 2003 server (can be found on the
Internet), start it like this: cmdasuser localsystem, this will launch a
command box in the security context of the localsystem.
2.. In this cmd box connect to at client computer like this: net use *
\\client\c$ /u:domainadmin password
3.. Start (in same cmd box) regedit.exe and connect to the client's
registry.
4.. Try this procedure with and without sp1 and against nt4, w2k, xp and
w2003 computers.


Is this a bug in w2003 sp1 or ???





Regards

Jan

Denmark




.

Relevant Pages

  • Re: event ID29 time provider not available
    ... I understand that when you boot Windows Server 2003 you received an error ... This issue may occur if the Network Load Balancing service is referenced as ... Start Registry Editor. ... "NLB Failed to Start" Error Message on Windows 2000 If NLB Is Not Installed ...
    (microsoft.public.windows.server.general)
  • RE: Microsoft RPC DCOM exploit descriptions
    ... variant below, ... The services can be viewed in the Services Console in Windows ... the "Computer Browser" and "Server" services are no ... Delete the Registry Value: ...
    (Bugtraq)
  • RE: DSL & Dialup Not Working Under W2K
    ... After a remote client establishes a connection by using Dial-Up Networking, ... A "cannot find server or DNS" error occurs. ... Windows 2000 LAN clients cannot map a network drive to the server. ... If you use Registry Editor incorrectly, ...
    (microsoft.public.win2000.networking)
  • Re: Urgent!!! Windows Reboots continuously after Installing SP4
    ... After you tell the CD to go ahead and install Win2K Server, ... to the registry or possibly the drive folder structure. ... You will end up with a dual boot Windows Server. ... folder structure, and check the registry, backup registry and event ...
    (microsoft.public.win2000.general)
  • RE: No access to Shared Printer
    ... Windows NT and Windows 2000 Print Browsing Architecture ... This article contains information about modifying the registry. ... How Shared Printers Are Found ... Windows NT print server. ...
    (microsoft.public.win2000.printing)