Link to home
Start Free TrialLog in
Avatar of tstarlin
tstarlinFlag for United States of America

asked on

SRP (Software Restriction Policies) is blocking local Administrator.

I implemented SRP on a Windows 7 Pro PC that I was logged into as the Local Administrator. In Enforcement I ensured that "All users except local administrators" was selected. I then set the default Security Level to Disallow. At this point I attempted to open Windows Update from the Start menu and was blocked. I ran gpupdate, still blocked. I rebooted the PC, still blocked. I changed the default Security Level back to Unrestricted and was no longer blocked. Why is'nt the "All users except local administrators" enforcement variable working? This is the 9th PC I've setup with SRP, all the same configuration, and all the others work fine. Any ideas?
Avatar of DarinTCH
DarinTCH
Flag of United States of America image

run RSOP
resultant set of policy
to determine what is being applied
compare to working unit
Avatar of tstarlin

ASKER

Ran RSOP and compared a PC that the local Administrator isnt being blocked to the one that is. Went line by line. There is no difference at all.
ASKER CERTIFIED SOLUTION
Avatar of DarinTCH
DarinTCH
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
DarinTCH, I'm guessing this may be a similar situation. I'm going to reformat this PC and start from scratch. It has to be some kind of glitch. Thank you for your thoughts and take care.