Proxy Server settings from W2K domain policy

Posted on 2004-09-07
Last Modified: 2010-03-18
We use W2K AD domain policy to set our IE proxy server settings. Until recently we use ISA Server 2000 locally on one of our servers, but have now changed to an off site url for the proxy. Most of the time users log on and get the correct settings, but sometimes the old settings reappear! I have uninstalled the ISA Server software so where can this be coming from?

We don't have "automatically detect" enabled. Sometimes you can untick the incorrect proxy settings, reboot, and it comes good, but sometimes everthing is greyed out and we have to use regedit to clear out the incorrect settings. All the DC servers are synced and all have the correct settings so I'm baffled as to where the wrong settings are coming from !!
Question by:proneill
  • 4
  • 4
LVL 11

Expert Comment

ID: 12000144
hmm.. try making a policy disable the old policy , then have a policy later enable it.  I think once all clients are switched over it will be corrected.
Its not spiratic on the same pc's is it?  

also what if you forward the DNS to the extrnal host

Author Comment

ID: 12015656
Thanks for your response. Not sure how I would make a policy to disable - it only allows for enabling in the GP Proxy Settings.

I don't know what spiratic means but on the same pc it can be ok on one user's logon but not another.

Our dns is internal except for our web site and mail settings which are done on an external host. I can't make any changes to this setup

Author Comment

ID: 12015674
I've just realised what you probably mean - put the settings so that there's no proxy, then later re-enable it. I'll give this a try!
Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

LVL 11

Expert Comment

ID: 12017081
hehe I spell wrong because I say things wrong.

spiratic=sporadic  :D

meaning... does it work sometimes with the same user, and not other times.

also try putting a logon script in the problematic GPO.

make it say

net send "yourcomputername" %username% GPO success on %computername%

it will give you a popup window on your pc if the script is executing.  Or simply put a pause in it, so it will stay visable.

and you can confirm its running


@echo Applied GPO Test
@echo If you see this message the client has successfuly applied GPO "GPO Name"

Just ideas for troubleshooting.  
LVL 11

Expert Comment

ID: 13168143
did my suggestion work?

Author Comment

ID: 13181418
Had to pay Microsoft to investigate this one. Turned out to be a synch error on one of the DCs
LVL 11

Expert Comment

ID: 13182951
ahh.. been there.

Were you able to repair it or did they make you reload the servers?

They tried to get me to reload, but I said no, then suddenly they came up with a solution :)

Accepted Solution

modulo earned 0 total points
ID: 13190524
PAQed with points refunded (250)

Community Support Moderator

Author Comment

ID: 13190776
This was the gist of the registry hack:

HKey Local Machine\System\CurrentControlSet\Services\NTFRS\Parameters\Backup\Restore\ProcessatStartup. If there is not an entry forBurflags create one, edit, menu,new dword value, Burflags, OK. If there is one, r-click, modify, type d2 in value data box, OK.

The net stop NTFRS, net start NTFRS.

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
WAN and LAN NIC on Windows Server 2012 11 128
Office 2016 Network Activation 2 34
backup computers on Workgroup 10 68
Skype password reset 1 15
This article is in response to a question ( here at Experts Exchange. The Original Poster (OP) requires a utility that will accept a list of IP addresses …
A common practice in small networks is making file sharing easy which works extremely well when intra-network security is not an issue. In essence, everyone, that is "Everyone", is given access to all of the shared files - often the entire C: drive …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
In an interesting question ( here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question