cholzhauer
asked on
Active Directory errors
A few months ago, I wanted to deploy an AD setting that would lock the screens of users after a certain amount of time. The policy never worked right and to make a long story short, I started looking online for reasons why. It turns out that this is a frequent problem and that one of the suggestions was to update the ADMX files. I did that and now I get a bunch of errors when I try and use the GPME (group policy management editor) How do I make them go away? I have four domain controllers, two are Server 2008 R2 and two are Server 2008
See attached.
(There are many many errors like the attached, but for the sake of this post, I didn't attach them all)
Capture.PNG
Capture1.PNG
Capture2.PNG
Capture3.PNG
See attached.
(There are many many errors like the attached, but for the sake of this post, I didn't attach them all)
Capture.PNG
Capture1.PNG
Capture2.PNG
Capture3.PNG
Venkat Suresh
Where did you copied ADMX templetes is it in SYSVOL or Windows\ System32\ you need to copy all the Group policy templetes to SYSVOL\ Policies\ then create and configure GPO.
ASKER
Sorry, thought I posted this yesterday
They're copied to C:\windows\SYSVOL\domain\P
There are ADMX and ADML files in that folder, then under C:\windows\SYSVOL\domain\P
They're copied to C:\windows\SYSVOL\domain\P
There are ADMX and ADML files in that folder, then under C:\windows\SYSVOL\domain\P
ASKER
Anyone?
It looks to me like your ADMX files are corrupt or you are tying to edit GPs on a computer with older ADMX files.
First I would recommend upgrading your non R2 to R2, don't think this will solve the problem but as I don't think you have to pay an additional license for this upgrade you may as well do it.
Next make sure all your servers are 100% up to date with Windows Update
Now redownload the ADMX and ADML files from http://www.microsoft.com/en-us/download/details.aspx?id=14355 and follow the steps to install and copy to your other domain controllers.
Make sure GPMC is installed and up to date http://technet.microsoft.com/en-us/library/cc725932.aspx
Now only do your GP edits from one computer or server, do not try to make edits on multiple systems as this can result in corrupt ADMX templates and GPOs if the templates are different versions on the different servers.
eb
First I would recommend upgrading your non R2 to R2, don't think this will solve the problem but as I don't think you have to pay an additional license for this upgrade you may as well do it.
Next make sure all your servers are 100% up to date with Windows Update
Now redownload the ADMX and ADML files from http://www.microsoft.com/en-us/download/details.aspx?id=14355 and follow the steps to install and copy to your other domain controllers.
Make sure GPMC is installed and up to date http://technet.microsoft.com/en-us/library/cc725932.aspx
Now only do your GP edits from one computer or server, do not try to make edits on multiple systems as this can result in corrupt ADMX templates and GPOs if the templates are different versions on the different servers.
eb
ASKER
The upgrade from 2008 to 2008 R2 isn't free (it's like going from Vista to Win 7)
The link you included looks like what I installed before, but the problem with this is it's for Server 2008 (not R2)
The link you included looks like what I installed before, but the problem with this is it's for Server 2008 (not R2)
OK there should be a related article list at the bottom and may have the R2 stuff. I guess our maintenance agreement with MS allowed for the free upgrade from 2008 to R2
ASKER
I did find another link at. http://www.microsoft.com/en-us/download/details.aspx?id=6243
Are you recommending that I delete the current admx files and replace with the downloaded ones?
Are you recommending that I delete the current admx files and replace with the downloaded ones?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
That looks like it worked; I no longer get a bunch of error messages when editing GPO's. anything I copy into the \\domaincontroller\sysvol\
It should sync unless you have replication issues. I would just run the install on each server to ensure they are up to date.
eb
eb
ASKER
I've done that and also deleted the contents of the \\domaincontroller\sysvol\
Glad you are not having any more issues but the contents of \sysvol[domain]\policies is actually your group policies not the templates so you may have just deleted all your policies.
eb
eb
ASKER
guess I'd better go check that, thanks