Domain Controller Security Policy settings for SQL - messed up Administrator account

Posted on 2006-06-06
Medium Priority
Last Modified: 2010-04-19
Made some changes to the Domain Controller Security policy settings to allow the SQL reporting server to work correctly.

I manually assigned the impersonate a client after authentication to the IWAM account, but inadvertantly assigned it also to the server administrator account.

This means that I now how VERY limited access to the server and cannot reverse these setting through the traditional admin tools.

I tried restoring a backup but it did not resolve the problem.

Can somebody advise how I can reset the security policies for the domain controller back to where i started ?

many thanks

Question by:NiSiWi
  • 2
LVL 74

Accepted Solution

Jeffrey Kane - TechSoEasy earned 2000 total points
ID: 16856111
Unfortunately, you now know that you shouldn't do that.  Next time, create a NEW GPO for any modifications, or at the very least do a full backup of policies before starting.

Since you cannot now reverse these you can't even restore from the backup, so you have to do a System State Restore.  Press F8 as the system boots and select that option.


Author Comment

ID: 16859211
Thanks Jeff,

I managed to create another admin account, but things still see a bit mesed up as a few other problems have crept in.

For some reason the COM+ services are not starting up correctly.
Have tried renaming the clbcatq.dll file and removing COM3 entries from the registry nd then running the add/remove windows components to force it to install COM+ again but I receive an 0x80040206 error saing that the COM+ clasess could not be registered.
Any ideas.
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 16861215
Any ideas?  Yeah... stop doing things like that!  Where did you get the idea to mess with the registry and remove COM3 entries???  Com+ Services is not an optional component and cannot be removed/reinstalled.

You now must reinstall your entire Operating System... sorry to say.

From now on, do not attempt to create your own remedies for these things.  ALWAYS follow knowledge base articles that are specific to your problem.


Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Small Business Server 2011. NOTE: This guide has been written using the preview version of SBS2011 therefore some of the screens may …
You may have discovered the 'Compatibility View Settings' workaround for making your SBS 2008 Remote Web Workplace 'connect to a computer' section stops 'working around' after a Windows 10 client upgrade.  That can be fixed so it 'works around' agai…
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …
Despite its rising prevalence in the business world, "the cloud" is still misunderstood. Some companies still believe common misconceptions about lack of security in cloud solutions and many misuses of cloud storage options still occur every day. …
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question