Solved

Vista issues with Firewall, VPN and accessing files

Posted on 2007-12-05
3
3,062 Views
Last Modified: 2008-05-01
I am testing Vista Ultimate for my possible corporate roll out. I have two Vistas on my corporate network, on similar yet different computers. Both are 64 bit Vista Ultimate versions.

Here are my issues.

1. The firewall service doesnt start. I get an error message saying that ", "Error 1297:  A privilege that the service requires to function properly does not exist in the service account configuration." Did some checking on line and it seems to be related to my policy settings. How in the world would a local firewall setting be affected by that? Anyone know how tio fix this?

2. I can't ping or access my Vista from other computers. I have no firewall (as per question 1) so I am not sure why this is not working. Even files that are shared. I have all the shared preferences turned on. (I have no other 3rd party VPN)

3. VPN does not connect to anything. Creating a vpn connection and going through the wizard will yield unable to connect in a split second (like it doesnt even try) and when you say create VPN anyway, nothing gets created.

Anyone know how to address these issues? I found Vista stable and able to run all my apps, but these three problems are major to me. I can't even have remote access on the machines because I need a firewall setting enabled, and I cant start the firewall.

One more data piece. Both Vistas experience the same issues, and both are very fresh installs.

Thanks!
0
Comment
Question by:itconsultant1
3 Comments
 

Author Comment

by:itconsultant1
ID: 20420612
found this solution on a different site... this made everything work.

Hi finally got this to work with the below.

The problem started when I installed Vista Ultimate as an upgrade from an OEM disk from Windows XP on our domain. Not only did the firewall break but so did other services such as

Remote Access Connection Manager
Error:7000
Service Control Manager
Error:7000
These stopped the Telephony Service from launching which seemed to have a knock on effect on the dependencies, I managed to get all of these services working and then finally the firewall service started by following the below.

I opened our domain group policy (If you don't know how, I added below) and added Added "Local Service" & "Network Service" to these User rights assignments...

Act As part of the operating system
Adjust memory Quotas for a process
Allow Log On Locally
Log on as a service
Replace a process level token

(If you are using AD on 2000 Server then some of the names vary, they are similar and work the same)

On your vista pc open a command prompt and run gpupdate /force

This will update your group policy locally, re-boot and see if the services have started, if not as mine didn't, from run type secpol.msc and see if the user rights under local policies are in there, you can also see the icons are different shades for policies that have come over from the group policy which helps you to see which ones might have changed or may need changing.

Now open services run-> services.msc and open windows firewall service and put in "Local Service" no password and close and try starting it.If it still fails you need to check through the policies again and see if Local Service is in the ones that came over from the Group Policies. Mine finally started after I had re-booted with the firewall service set to manual and then I entered "Local Service" and started it successfully, I have no idea why it didn't start on Automatic, but now it does it fine.

How to open your Domain Group Policy.
On your Domain Controller, start->Run-> type mmc and hit enter
Console Add/Remove Snapin
Click Add
Find group policy and select
Browse for your domain policy and choose it (If its not there then you don't have one)
OK & Finish
Expand -> Computer Configuration->Windows Settings->Security Settings->Local Policies->User Rights Assignment.
Make the adjustments to the rights as above.

 


0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 20591259
PAQed with points refunded (250)

Computer101
EE Admin
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

There are many reasons a PC runs slower than when it was new, ranging from malicious software intended to mess things up to simple general Windows use.  Your PC performance may slowly degrade over time without you noticing but when you buy a PC from…
Sometimes, you want your microsoft VPN to route all the traffic to the remote network. Usually your employer network. This makes it possible to access all the nodes inside this remote LAN, even if they have no "public DNS" entries. To do so, you wo…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now