• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1149
  • Last Modified:

DNS service failed due to NTLMSSP

I have an odd problem.  I am new to a company, replacing the old sysadmin so am working on a machine I don't really know the history of.  This is on a 2000 Server with SP4 (It is _NOT_ NT) and most of its windows updates.  Anyway I need to install DNS which was easy enough to do, but when I try to start the service, it give me an error:
Could not start the DNS Server service on Local Computer.
Error 1068: The dependency service or group failed to start.

And it adds this to the event log:

Event Type:      Error
Event Source:      Service Control Manager
Event Category:      None
Event ID:      7001
Date:            5/14/2005
Time:            3:42:04 PM
User:            N/A
Computer:      MACHINE
Description:
The DNS Server service depends on the NT LM Security Support Provider service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.  

So when I try to start the NT LM Security Support Provider it doesn't have that option.  When I try for properties it says:

Unable to open service NT LM Security Support Provider for reading on Local Computer.
Error 5: Access is denied.

I am an admin on the machine.
If I try to start it from the cmd it gives me the same access is denied error.  I have a few other services acting the same way (NetMeeting Remote Desktop Sharing, Routing and Remote Access, TCP/IP NetBIOS Helper Service and Telnet).

Other then this the machine seems fine, the device manager has no X's, the event viewer doesn't seem to have much in the way of unexplained errors.  Everything seems ok.

Any thoughts on how I can fix this?
0
NRCody
Asked:
NRCody
  • 4
1 Solution
 
NRCodyAuthor Commented:
Doh, the reason I said I am _NOT_ using NT is because almost all the questions that I searched on where about NT not 2000.  Then what do I do, I post it into the wrong window and post it to the NT topics.  My bad.
Nick
0
 
NRCodyAuthor Commented:
The fix for this turned out to be easy.  For the NTLMSSP problem all I had to do was uninstall and reinstall the Client for Microsoft Networks.  Our guess is the previous admin disabled or broke lsass.exe when all those viri where taking advantage of it.
Anyway, no 500 points for anyone.  Could an admin please clost this question.
Nick
0
 
NRCodyAuthor Commented:
Ok, after much mucking around with this I found the true answer to this problem.  The services are being disabled by a domain security policy.  Why uninstalling and reinstalling the service "fixed" this I don't know.  And why Error 5 doesn't flag all over the place as meaning it could be this I also don't know.  And hell, why it doesn't say Error 5: access is denied because of a Domain Security Policy I don't know either.
Nick
0
 
moduloCommented:
PAQed with points refunded (500)

modulo
Community Support Moderator
0
 
NRCodyAuthor Commented:
I guess I should have finally done the final final follow up on my own post.  How I ended up fixing this was by taking the regkey for the service NtLmSsp from a working machine and merging it with the non working machine.  It seems that something broke the key or cut it down to a smaller size.  
This is the key:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NtLmSsp]
"Type"=dword:00000020
"Start"=dword:00000003
"ErrorControl"=dword:00000001
"ImagePath"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,\
  74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,6c,\
  00,73,00,61,00,73,00,73,00,2e,00,65,00,78,00,65,00,00,00
"DisplayName"="NT LM Security Support Provider"
"ObjectName"="LocalSystem"
"Description"="Provides security to remote procedure call (RPC) programs that use transports other than named pipes."

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NtLmSsp\Security]
"Security"=hex:01,00,14,80,a0,00,00,00,ac,00,00,00,14,00,00,00,30,00,00,00,02,\
  00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
  00,00,02,00,70,00,04,00,00,00,00,00,18,00,fd,01,02,00,01,01,00,00,00,00,00,\
  05,12,00,00,00,20,02,00,00,00,00,1c,00,ff,01,0f,00,01,02,00,00,00,00,00,05,\
  20,00,00,00,20,02,00,00,03,00,00,00,00,00,18,00,8d,01,02,00,01,01,00,00,00,\
  00,00,05,0b,00,00,00,20,02,00,00,00,00,1c,00,fd,01,02,00,01,02,00,00,00,00,\
  00,05,20,00,00,00,23,02,00,00,03,00,00,00,01,01,00,00,00,00,00,05,12,00,00,\
  00,01,01,00,00,00,00,00,05,12,00,00,00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NtLmSsp\Enum]
"0"="Root\\LEGACY_NTLMSSP\\0000"
"Count"=dword:00000001
"NextInstance"=dword:00000001

0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now