Group policy  failed to open Domain Controller policy and domain policy,

Posted on 2011-04-23
Last Modified: 2012-05-11
th system path cannot find , how to rebuild default domain controller policy and default domain policy
Question by:harispm
    LVL 7

    Accepted Solution

    Did you check if they actually exists? Check if the permissions are messed up.
    Unique ID for the policies are:
    {31B2F340-016D-11D2-945F-00C04FB984F9} - Default Domain Policy
    {6AC1786C-016F-11D2-945F-00C04FB984F9} - Default Domain Controllers Policy

    You can also create a dummy domain, and copy the Default Domain Policy and Default Domain Controller Policy folders from that domain to this domain. The folder name for these two policies are same in any AD environment.

    You can use DCGPOFIX tool. But use this as the last resort.
    The Dcgpofix tool does not restore security settings in the Default Domain Controller Policy to their original state

    Author Comment

    I used DCGPfix tool , it is working now
    LVL 74

    Expert Comment

    by:Glen Knight
    This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    6 Surprising Benefits of Threat Intelligence

    All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

    Suggested Solutions

    One of the major disadvantages of still running XP in production is its lack of Internet Explorer Favourites directory redirection. If your users frequently roam between computers, the usual workaround is to enable Roaming Profiles to have the favou…
    Installing a printer using group policy preferences is not that hard let’s take a look at it. First lets open up your group policy console and edit the policy you want to add it to. I recommend creating a new policy for each printer makes it a l…
    This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    760 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    15 Experts available now in Live!

    Get 1:1 Help Now