Learn how to a build a cloud-first strategyRegister Now


Default Domain Policy Errors

Posted on 2005-05-06
Medium Priority
Last Modified: 2012-08-13
I'm having an issue right now with the Default Domain Policy not applying correctly to my XP and 2003 machines. I am having no issues with my W2K Servers. Upon reboot, all the machines log the following errors:

Event Type:      Error
Event Source:      Application Management
Event Category:      None
Event ID:      108
Date:            5/6/2005
Time:            12:18:52 PM
User:            NT AUTHORITY\SYSTEM
Computer:      COMPUTERNAZI1
Failed to apply changes to software installation settings.  Software changes could not be applied.  A previous log entry with details should exist.  The error was : There is no software installation data object in the Active Directory.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

Event Type:      Error
Event Source:      Userenv
Event Category:      None
Event ID:      1085
Date:            5/6/2005
Time:            12:18:52 PM
User:            NT AUTHORITY\SYSTEM
Computer:      COMPUTERNAZI1
The Group Policy client-side extension Software Installation failed to execute. Please look for any errors reported earlier by that extension.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

I used verbose logging to create an appmgmt.log. I received the following results:

05-06 12:18:52:593
Software installation extension has been called for foreground synchronous policy refresh.
The following policies are to be applied, flags are 1.
    Default Domain Policy (unique identifier {31B2F340-016D-11D2-945F-00C04FB984F9})
        System volume path = \\AIRQCCORP.com\sysvol\AIRQCCORP.com\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}\Machine
        Active Directory path = LDAP://CN=Machine,CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=AIRQCCORP,DC=com
Set the Active Directory path to LDAP://CN=Class Store,CN=Machine,CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=AIRQCCORP,DC=com;.
Enumerating applications in the Active Directory for computer COMPUTERNAZI1 with flags 5.
Cannot bind to the Active Directory to enumerate applications, error code 80040169.
Failed to apply changes to software installation settings.  Software changes could not be applied.  A previous log entry with details should exist.  The error was : %2147746153

Software installation extension returning with final error code 2147746153.

So I realized it was my default domain policy and I do not have any software installation in that or any GPO.

I ran RSOP to see what GPOs were being applied to what computers and I received an error that under Default Domain Policy - Software Installation Status was Pending and here is the error code:
Friday, May 06, 2005 2:12:42 PM

Software Installation did not complete policy processing because a system restart is required for the settings to be applied.  Group Policy will attempt to apply the settings the next time the computer is restarted.

All computers have been restarted multiple times including the DCs so this is not an issue.

Here is some background that I think is pertinent. 3 months ago, I had a catastrophic hardware failure on my W2K PDC,RID DC over a weekend and it propigated to my other Dcs. I had to seize roles and do a Authoritative System State restore.Did have a GPO with Software deployment with the share on the server that went belly up. Removed that GPO both link and object. Had no errors on any of my W2k DCs (didn't check my XP machines - kicking myself as we speak). I have been adding 2003 member server to the domain since then....and in the last month, promoted 2 of them to DCs. No errors during adprep. Dcpromo ran smoothly. I do have some different issues concerning the DC promo of the Win2003 servers but I want to take care of this first and maybe it will alleviate the others.

These errors are not affecting anyone's abilities to log on or access network resources. Currently, they are not affecting any day to day. Just worried they might!

Thanks in advance! You guys have helped me out tremendously in the past by just reading your posts so I decided to throw this one out there for you.

Question by:mickilu
  • 2
LVL 20

Accepted Solution

Lazarus earned 1000 total points
ID: 13949494
Hopefully these will guide you to a fix...

Possible causes:

Identifying Group Policy Client-Side Extensions - http://support.microsoft.com/default.aspx?scid=kb;en-us;Q216357
Troubleshooting Group Policy Client-Side Extension Behavior - http://support.microsoft.com/default.aspx?scid=kb;en-us;Q216358

Other Possibilties:

Event ID 1091 and Event ID 1085 Appear in the Application Event Log - http://support.microsoft.com/default.aspx?scid=kb;en-us;Q823608
Group Policy could not apply one of the client-side extensions. As a result, the extension settings have been only partially applied - http://www.microsoft.com/technet/support/ee/result.aspx?EvtSrc=Userenv&EvtID=1085&ProdName=Windows+Operating+System&LCID=1033&ProdVer=5.2

And lastly...

Packages Assigned to Computers with Group Policy Are Not Installed - http://support.microsoft.com/default.aspx?scid=kb;en-us;Q278472

Per Microsoft: “This behavior may occur if you have a Microsoft Windows 2000 domain that includes Windows Server 2003-based servers, and you apply Internet Protocol security (IPSec) policies by using Group Policy. These event messages appear in the Application event log every time that these policies are applied on the Windows Server 2003-based servers”. See Q823608 to fix this problem".

See the link to "Microsoft event 1085 from source Userenv" for additional information on this event.

Author Comment

ID: 13959774

Thanks for the response. I was fighting a really nasty bug this weekend so I didn't have a chance to try the information you sent. Will work on it this AM and let you know how my progress.

Again thanks,
LVL 20

Expert Comment

ID: 14758045
Not sure what happened to his problem.. But the links should have been able to guide him to a fix

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Numerous times I have been asked this questions that what is it that makes my machine log on so slow, there have been cases where computers took 23 minute exactly after taking password and getting to the desktop. Interesting thing was the fact th…
Learn about cloud computing and its benefits for small business owners.
Look below the covers at a subform control , and the form that is inside it. Explore properties and see how easy it is to aggregate, get statistics, and synchronize results for your data. A Microsoft Access subform is used to show relevant calcul…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question