The subject behavior occurs because the Local Service account does NOT have Read permission on the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg key.
NOTE: Under Windows 2000 Server, the Remote Registry Service ran under the Local System account context.
To resolve this issue:
1. Download the corrected version of SubInACL.exe.
2. Open a CMD.EXE window.
3. Type the following command and press Enter:
subinaCL /keyreg HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg /grant=Builtin\Administrators=F /grant="Local Service"=R4. Shutdown and restart Windows Server 2003.
NOTE: See tip 7519 » What Windows Server 2003 services no longer use the Local System account?
0 comments
Hide comments