asked on registry editor could not set secuirty in the key currently selected, or some of its subkeys
I have a Dell Latitude XT2 tablet that I am trying to put Symantec Endpoint Full Disk Encryption on.
After Install and restart I get an error that says " cannot export settings to client database from settings" and " update settings failed please contact administrator".
I contacted Support at Symantec and they said the issue was that I needed to do the following
1. Right click on HKLM\SOFTWARE\Encryption Anywhere, select Permissions.
2. Click the Advanced button.
3. Make sure "Inherit from parent..." and "Replace permission entries..." are checked.
4. Click the Apply button.
5. Respond "Yes" to question "This will remove explicitly defined permissions on all child objects..."
6. Click OK twice.
When I try to change thie key I get the following error.
registry editor could not set secuirty in the key currently selected, or some of its subkeys
Can anyone help me fix this problem.
After Install and restart I get an error that says " cannot export settings to client database from settings" and " update settings failed please contact administrator".
I contacted Support at Symantec and they said the issue was that I needed to do the following
1. Right click on HKLM\SOFTWARE\Encryption Anywhere, select Permissions.
2. Click the Advanced button.
3. Make sure "Inherit from parent..." and "Replace permission entries..." are checked.
4. Click the Apply button.
5. Respond "Yes" to question "This will remove explicitly defined permissions on all child objects..."
6. Click OK twice.
When I try to change thie key I get the following error.
registry editor could not set secuirty in the key currently selected, or some of its subkeys
Can anyone help me fix this problem.
Windows 7Dell
Last Comment
Randy Madej
ASKER
I installed setacl.exe On the interface I can not find where to set The Replace all child object permissions with inheritable permissions from this object.
I ran this SetACL.exe -on c:\Windows -ot file -actn list from the command line and the run window with no luck.
I ran this SetACL.exe -on c:\Windows -ot file -actn list from the command line and the run window with no luck.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
The use of “secedit /configure” to import the default security template, dfltbase.inf, is unsupported nor is it a viable method to restore default security permissions on Windows Vista, Windows 7, Windows Server 2008 and Windows Server 2008 R2 computers.
Beginning with Windows Vista, the method to apply the security during operating system setup changed. Specifically, security settings consisted of settings defined in deftbase.inf augmented by settings applied by the operating installation process and server role installation. Because there is no supported process to replay the permissions made by the operating system setup, the use of the “secedit /configure /cfg %windir%\inf\defltbase.inf
Beginning with Windows Vista, the method to apply the security during operating system setup changed. Specifically, security settings consisted of settings defined in deftbase.inf augmented by settings applied by the operating installation process and server role installation. Because there is no supported process to replay the permissions made by the operating system setup, the use of the “secedit /configure /cfg %windir%\inf\defltbase.inf
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Icacls/restore did not work either. I ended up reloading the machine from scratch.
Thank you for trying .
Thank you for trying .
At the very least you could set permissions on everything else using the "-ignoreerr" switch.
http://helgeklein.com/setacl/documentation/command-line-version-setacl-exe/