Server Event Log inaccessible from remote server.
Posted on 2007-04-09
A client file server / Domain Controller is giving some strange security problems. It is running Windows 2003 R2 and in the course of troubeshooting it we tried installing SP2, but it didn't help. Essentially, we are having problems installing an agent software from their backup application. However, there are some other issues that seem related to me that may be easier to troubleshoot and get to the root of the problem.
If I view the event viewer locally on the server, I can view the events. If I use the MMC and connect to the computer from one of the other Domain Controllers and try to view the Event Log, I get an Access denied error. Nothing is thrown in the event log of either server when I try to connect so it's not giving me much guidance on what the problem is. Both servers reside on the same physical subnet. I can view the event log like this on ANY of the other servers, so I'm guessing this is specific to that server and not the domain itself. I don't know if this problem existied before, but this domain was renamed about 1 month ago using the domain rename tools. I have done the following on attempting to troubleshoot:
1. Installed SP2
2. Removed the DC services, remove the server from the domain, re-added it to the domain, re-promoted it.
3. Verified the security on all admin shares
4. Verified file security on the event logs.
None of that helped. Any suggestions would be greatly appreciated!