Solved

Windows Firewall-Local System account

Posted on 2010-08-30
13
1,145 Views
Last Modified: 2012-05-10
I have a Windows 2008 Standard SP1 32-bit server. I was checking event logs working on some issues and noticed an error from the firewall indicating it couldn't inform the user when a program was blocked from accepting an inbound connection. I went to the services snap in, checked the log-on properties, changed the setting to log on as "Local System account" and selected allow service to interact with the desktop. I received an error indicating:

Windows could not start the firewall on Local Computer.

Error 1079: The account specified for this service is different from the account specified for other services running in the same process."

I can't change the settings back without the password, which is of course managed by Windows.

Does anyone know of a way to resolve this? Can I use Windows Features to remove & reinstall the firewall?

Bruce
0
Comment
Question by:bruce-wilkinson
  • 6
  • 4
  • 2
  • +1
13 Comments
 
LVL 4

Expert Comment

by:Jamie_Wilson
ID: 33562572
Did you reboot the server after you made that change?
0
 
LVL 63

Expert Comment

by:SysExpert
ID: 33562581
well I would certainly try that first, unless you have a backup or restore point.

I hope this helps !
0
 

Author Comment

by:bruce-wilkinson
ID: 33562739
I have not rebooted.

Bruce
0
 

Author Comment

by:bruce-wilkinson
ID: 33562751
What would I restore? I'd prefer not to restore the whole system, too many changes lost.

Bruce
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 33563015
0
 

Author Comment

by:bruce-wilkinson
ID: 33566539
Can't disable through netsh, the firewall service won't start. When I tried to reset it, I got "the service has not been started". When the service isn't running, changes can't be made.

Bruce
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 33566664
So,  you have tried to disable through netsh and it didn't work, right? Add a domain admin account in the username and password in then try to start.
0
 

Author Comment

by:bruce-wilkinson
ID: 33567687
dariusq, I'm not following what you said about adding a domain account. I'm logged in as administrator.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 33567861
Yes, but the service has a username and password attach to it.
0
 
LVL 63

Expert Comment

by:SysExpert
ID: 33568347
A restore point ( Drivers and registry ) or system state restore, does not affect data, but may well resolve your issue.

Else, you can uninstall and install it again .



0
 

Author Comment

by:bruce-wilkinson
ID: 33568504
dariusq, the service does have a user name and password associated with it. Changing it was what started this problem. The firewall service runs in a shared process. Once changed, you get an error indicating the log on name/password do not match the name/password for other services in the shared process. Since Windows manages the password for Local Service or Network Service, you can't go back to the original settings either. You don't know the password, and you can't change it.

SysExpert, Server 2008 doesn't create restore points. I ran vssadmin list shadows. I found 1, but it was created after the firewall changes. That was a problem I resolved yesterday, but not until after the changes to the firewall service settings.

I'm waiting for a MS engineer to see if they can help. Otherwise, I may be forced to reinstall.

Bruce
0
 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 500 total points
ID: 33568745
0
 

Author Closing Comment

by:bruce-wilkinson
ID: 33569142
Of the links provided, the first one proved to be the one I needed. I used the local system account with no password. I didn't get an error, and was able to start the firewall service. It cleared another problem we were having with domain authentication and network resources being blocked. Thanks dariusq!
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Group Policy windows server 2008 and 2012 2 75
Restore DNS Record 5 70
VMware Black Screen 13 81
Determine if SQL is installed in Server 2008 R2 4 53
Recently, I was asked to look into SCCM 2007 by my employer, having a degree of experience of earlier versions of SMS and some previous SCCM knowledge I didn't expect the procedure to involve to much time. I read a number of guides concerning it…
I was asked if I could set up a fax machine so that incoming faxes were delivered to people's Exchange inboxes and so that they could send faxes from their desktops without needing to print the document first.  I knew it was possible but I had no id…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now