Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.
COURSE of the MONTH
14 days, 9 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Error trying to open Group policy Management Editor in Server 2008 R2
Posted on 2011-03-19
When trying to open and make changes to an existing group policy in Server 2008 R2, I receive the following error. "Group Policy Error, failed to open the group policy object, you may not have appropriate rights."
I was just making some final changes to this group policy object on this new server and was about to create a backup of the settings. So, unfortunately I can't restore the policy settings from backup. I think I remember a similar issue from Serve 2003 where I was able to use volume shadow copy to restore a registry.pol or something to that effect to get this back working again, but I'm not sure.
Is there a way to fix this issue? Thanks for your assistance.
I was just making some final changes to this group policy object on this new server and was about to create a backup of the settings. So, unfortunately I can't restore the policy settings from backup. I think I remember a similar issue from Serve 2003 where I was able to use volume shadow copy to restore a registry.pol or something to that effect to get this back working again, but I'm not sure.
Is there a way to fix this issue? Thanks for your assistance.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
10
8
- +1
20 Comments
You must have read or write access to the gplink and gpoptions propeties on the gpo.
What account are you using to try to edit the gpo?
By default, domain admins have this right.
make sure you have read and write access to the gpo you are trying to modify.
delegating group policy
http://technet.microsoft.com/en-us/library/cc776858(WS.10).aspx
The permissions are fine. I have been in and out of this policy many times as I have been creating it. I am logged onto the server as an administrator. I just received this error all of a sudden.
Directory Server Diagnosis Performing initial setup: Trying to find home server... Home Server = ANNE * Identified AD Forest.
Done gathering initial info. Doing initial required tests Testing server: Default-First-Site-Name\AN
access rights for the naming context: DC=ForestDnsZones,DC=cec,D
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have Replicating Directory Changes In Filtered Set
access rights for the naming context: DC=DomainDnsZones,DC=cec,D
......................... ANNE failed test NCSecDesc
Starting test: NetLogons ......................... ANNE passed test NetLogons Starting test: ObjectsReplicated ......................... ANNE passed test ObjectsReplicated Starting test: Replications ......................... ANNE passed test Replications Starting test: RidManager ......................... ANNE passed test RidManager Starting test: Services ......................... ANNE passed test Services Starting test: SystemLog An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:30 Event String: Driver Lexmark Optra S 1625 (MS) required for printer Lexmark Tech area is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:31 Event String: Driver Microsoft Office Document Image Writer Driver required for printer Microsoft Office Document Image Writer is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:32 Event String: Driver Microsoft Office Live Meeting 2007 Document Writer Driver required for printer Microsoft Office Live Meeting 2007 Document Writer is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:34 Event String: Driver PrimoPDF required for printer PrimoPDF is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:34 Event String: Driver Send To Microsoft OneNote Driver required for printer Send To OneNote 2007 is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457
Time Generated: 03/19/2011 16:46:35 Event String: Driver Lexmark Optra S 1625 (MS) required for printer WebEx Document Loader is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:39 Event String: Driver Lexmark C532 required for printer !!server1!Lexmark C532 is unknown. Contact the administrator to install the driver before you log in again. ......................... ANNE failed test SystemLog Starting test: VerifyReferences ......................... ANNE passed test VerifyReferences Running partition tests on : ForestDnsZones Starting test: CheckSDRefDom ......................... ForestDnsZones passed test CheckSDRefDom Starting test: CrossRefValidation ......................... ForestDnsZones passed test CrossRefValidation Running partition tests on : DomainDnsZones Starting test: CheckSDRefDom ......................... DomainDnsZones passed test CheckSDRefDom Starting test: CrossRefValidation ......................... DomainDnsZones passed test CrossRefValidation Running partition tests on : Schema Starting test: CheckSDRefDom ......................... Schema passed test CheckSDRefDom Starting test: CrossRefValidation ......................... Schema passed test CrossRefValidation Running partition tests on : Configuration Starting test: CheckSDRefDom ......................... Configuration passed test CheckSDRefDom Starting test: CrossRefValidation ......................... Configuration passed test CrossRefValidation Running partition tests on : cec Starting test: CheckSDRefDom ......................... cec passed test CheckSDRefDom Starting test: CrossRefValidation ......................... cec passed test CrossRefValidation
Running enterprise tests on : cec.local Starting test: LocatorCheck ......................... cec.local passed test LocatorCheck Starting test: Intersite ......................... cec.local passed test Intersite
Done gathering initial info. Doing initial required tests Testing server: Default-First-Site-Name\AN
access rights for the naming context: DC=ForestDnsZones,DC=cec,D
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have Replicating Directory Changes In Filtered Set
access rights for the naming context: DC=DomainDnsZones,DC=cec,D
......................... ANNE failed test NCSecDesc
Starting test: NetLogons ......................... ANNE passed test NetLogons Starting test: ObjectsReplicated ......................... ANNE passed test ObjectsReplicated Starting test: Replications ......................... ANNE passed test Replications Starting test: RidManager ......................... ANNE passed test RidManager Starting test: Services ......................... ANNE passed test Services Starting test: SystemLog An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:30 Event String: Driver Lexmark Optra S 1625 (MS) required for printer Lexmark Tech area is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:31 Event String: Driver Microsoft Office Document Image Writer Driver required for printer Microsoft Office Document Image Writer is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:32 Event String: Driver Microsoft Office Live Meeting 2007 Document Writer Driver required for printer Microsoft Office Live Meeting 2007 Document Writer is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:34 Event String: Driver PrimoPDF required for printer PrimoPDF is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:34 Event String: Driver Send To Microsoft OneNote Driver required for printer Send To OneNote 2007 is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457
Time Generated: 03/19/2011 16:46:35 Event String: Driver Lexmark Optra S 1625 (MS) required for printer WebEx Document Loader is unknown. Contact the administrator to install the driver before you log in again. An error event occurred. EventID: 0x00000457 Time Generated: 03/19/2011 16:46:39 Event String: Driver Lexmark C532 required for printer !!server1!Lexmark C532 is unknown. Contact the administrator to install the driver before you log in again. ......................... ANNE failed test SystemLog Starting test: VerifyReferences ......................... ANNE passed test VerifyReferences Running partition tests on : ForestDnsZones Starting test: CheckSDRefDom ......................... ForestDnsZones passed test CheckSDRefDom Starting test: CrossRefValidation ......................... ForestDnsZones passed test CrossRefValidation Running partition tests on : DomainDnsZones Starting test: CheckSDRefDom ......................... DomainDnsZones passed test CheckSDRefDom Starting test: CrossRefValidation ......................... DomainDnsZones passed test CrossRefValidation Running partition tests on : Schema Starting test: CheckSDRefDom ......................... Schema passed test CheckSDRefDom Starting test: CrossRefValidation ......................... Schema passed test CrossRefValidation Running partition tests on : Configuration Starting test: CheckSDRefDom ......................... Configuration passed test CheckSDRefDom Starting test: CrossRefValidation ......................... Configuration passed test CrossRefValidation Running partition tests on : cec Starting test: CheckSDRefDom ......................... cec passed test CheckSDRefDom Starting test: CrossRefValidation ......................... cec passed test CrossRefValidation
Running enterprise tests on : cec.local Starting test: LocatorCheck ......................... cec.local passed test LocatorCheck Starting test: Intersite ......................... cec.local passed test Intersite
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
Home Server = ANNE
* Identified AD Forest.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\AN
Starting test: Connectivity
......................... ANNE passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\AN
Starting test: Advertising
......................... ANNE passed test Advertising
Starting test: FrsEvent
......................... ANNE passed test FrsEvent
Starting test: DFSREvent
......................... ANNE passed test DFSREvent
Starting test: SysVolCheck
......................... ANNE passed test SysVolCheck
Starting test: KccEvent
......................... ANNE passed test KccEvent
Starting test: KnowsOfRoleHolders
......................... ANNE passed test KnowsOfRoleHolders
Starting test: MachineAccount
......................... ANNE passed test MachineAccount
Starting test: NCSecDesc
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=ForestDnsZones,DC=cec,D
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=DomainDnsZones,DC=cec,D
......................... ANNE failed test NCSecDesc
Starting test: NetLogons
......................... ANNE passed test NetLogons
Starting test: ObjectsReplicated
......................... ANNE passed test ObjectsReplicated
Starting test: Replications
......................... ANNE passed test Replications
Starting test: RidManager
......................... ANNE passed test RidManager
Starting test: Services
......................... ANNE passed test Services
Starting test: SystemLog
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:20
Event String:
Driver Lexmark Optra S 1625 (MS) required for printer Lexmark Tech area is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:23
Event String:
Driver Microsoft Office Document Image Writer Driver required for printer Microsoft Office Document Image Writer is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:25
Event String:
Driver PrimoPDF required for printer PrimoPDF is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:25
Event String:
Driver Send To Microsoft OneNote Driver required for printer Send To OneNote 2007 is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:26
Event String:
Driver Microsoft Office Live Meeting 2007 Document Writer Driver required for printer Microsoft Office Live Meeting 2007 Document Writer is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:28
Event String:
Driver Lexmark C532 required for printer !!server1!Lexmark C532 is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:29
Event String:
Driver Lexmark Optra S 1625 (MS) required for printer WebEx Document Loader is unknown. Contact the administrator to install the driver before you log in again.
......................... ANNE failed test SystemLog
Starting test: VerifyReferences
......................... ANNE passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : cec
Starting test: CheckSDRefDom
......................... cec passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... cec passed test CrossRefValidation
Running enterprise tests on : cec.local
Starting test: LocatorCheck
......................... cec.local passed test LocatorCheck
Starting test: Intersite
......................... cec.local passed test Intersite
Performing initial setup:
Trying to find home server...
Home Server = ANNE
* Identified AD Forest.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\AN
Starting test: Connectivity
......................... ANNE passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\AN
Starting test: Advertising
......................... ANNE passed test Advertising
Starting test: FrsEvent
......................... ANNE passed test FrsEvent
Starting test: DFSREvent
......................... ANNE passed test DFSREvent
Starting test: SysVolCheck
......................... ANNE passed test SysVolCheck
Starting test: KccEvent
......................... ANNE passed test KccEvent
Starting test: KnowsOfRoleHolders
......................... ANNE passed test KnowsOfRoleHolders
Starting test: MachineAccount
......................... ANNE passed test MachineAccount
Starting test: NCSecDesc
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=ForestDnsZones,DC=cec,D
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=DomainDnsZones,DC=cec,D
......................... ANNE failed test NCSecDesc
Starting test: NetLogons
......................... ANNE passed test NetLogons
Starting test: ObjectsReplicated
......................... ANNE passed test ObjectsReplicated
Starting test: Replications
......................... ANNE passed test Replications
Starting test: RidManager
......................... ANNE passed test RidManager
Starting test: Services
......................... ANNE passed test Services
Starting test: SystemLog
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:20
Event String:
Driver Lexmark Optra S 1625 (MS) required for printer Lexmark Tech area is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:23
Event String:
Driver Microsoft Office Document Image Writer Driver required for printer Microsoft Office Document Image Writer is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:25
Event String:
Driver PrimoPDF required for printer PrimoPDF is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:25
Event String:
Driver Send To Microsoft OneNote Driver required for printer Send To OneNote 2007 is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:26
Event String:
Driver Microsoft Office Live Meeting 2007 Document Writer Driver required for printer Microsoft Office Live Meeting 2007 Document Writer is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:28
Event String:
Driver Lexmark C532 required for printer !!server1!Lexmark C532 is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 03/24/2011 09:16:29
Event String:
Driver Lexmark Optra S 1625 (MS) required for printer WebEx Document Loader is unknown. Contact the administrator to install the driver before you log in again.
......................... ANNE failed test SystemLog
Starting test: VerifyReferences
......................... ANNE passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : cec
Starting test: CheckSDRefDom
......................... cec passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... cec passed test CrossRefValidation
Running enterprise tests on : cec.local
Starting test: LocatorCheck
......................... cec.local passed test LocatorCheck
Starting test: Intersite
......................... cec.local passed test Intersite
It is a new domain controller, a secondary server in an existing domain. The GPO was created on this domain controller by myself. I was in and out of this policy dozens of times making changes before this error occurred.
Yes, no luck. I am assuming the policy is just corrupt at this point and that I will have to replace.
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008.
Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller.
Log onto the new domain controller with a user account t…
Suggested Courses
Course of the Month14 days, 9 hours left to enroll
770 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.