"The Group Policy security settings that apply to this machine could not be determined"

Posted on 2006-04-11
Last Modified: 2013-12-04
Windows 2003 Server, not running SP1.

When navigating to Security Options under Local Computer Policy>Windows Settings>Security Settings>Local Policies, I get the following, "The Group Policy security settings that apply to this machine could not be determined.  The error returned when trying to retreive these settings from the local security policy database (%windir%\security\database\secedit.sdb) was: The parameter is inccorrect."

(Forgive me if I misspelled anything.  Had to type that out.)

From what I've read so far, my security db is corrupt.  Fine.  Well, I've run the esenutl /r command, which tells me:

'Integrity check successful.'

With no errors.  But I still get the error in my .mmc.  I've tried rebuilding the database using:


and even

No joy.  I'm at a loss.  I'm not even sure what I changed that caused this.  I thought I was just changing this:

Because I was having trouble mapping a drive.

Any ideas would be greatly appreciated it.
Question by:feti

    Author Comment

    I should add that when I try KB 278316, I get a permissions error.  "access is denied.  Import Failed Make sure you have the right permissions to this object."  I'm logged in as admin.

    Author Comment

    And when I try 313222 I get the following:

    'An extended error has occurred.

    The task has completed with an error.
    See log %windir%\security\logs\scesrv.log for detail info.'

    The great part is, scesrv.log is empty.
    LVL 7

    Expert Comment

    you have DC?
    what the error in event viewer?


    Author Comment

    Call to Microsoft fixed this.  Apparently doing this:

    'LAN Manager Authentication Level set to Send LM and NTLM - use NTLMv2 session security if negotiated - (default) send LM & NTLM responses'

    is a bad thing.  The Microsoft tech walked me through deleting two registry keys in HKEY_LOCAL_MACHINE>SYSTEM>CurrentControlSet>Control>MSV1_0 that referred to NTLM security.  I didn't copy down the names of the keys, unfortunately, but if you have anything other than (Default) and Auth2, that's probably the problem.

    Oh, and he did this for no charge.  Woot me.

    I'll be requesting a point refund.

    Accepted Solution

    Closed, 500 points refunded.
    The Experts Exchange
    Community Support Moderator of all Ages

    Featured Post

    What Should I Do With This Threat Intelligence?

    Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

    Join & Write a Comment

    In today's information driven age, entrepreneurs have so many great tools and options at their disposal to help turn good ideas into a thriving business. With cloud-based online services, such as Amazon's Web Services (AWS) or Microsoft's Azure, bus…
    Container Orchestration platforms empower organizations to scale their apps at an exceptional rate. This is the reason numerous innovation-driven companies are moving apps to an appropriated datacenter wide platform that empowers them to scale at a …
    Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now