We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
COURSE of the MONTH
10 days, 13 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Active directory not opening after apply plug n play service disable through GPO
Posted on 2014-04-05
I have active directory n domain controller on Windows server 2008 r2. Yesterday i have disable two services as part of hardening, Print spooler and plug n play services.I ran gpupdate /force command. After some time, Windows activation windows is popping on my server. Even active directory users n computers is not opening and GPO console is not opening. i have attached two error screenshots when i try to open GPO console now. I am unable to start the plug n play service even i have logged in with domain administrator account. plaese help.
GPO-Error.JPG
GPO-error2.JPG
GPO-Error.JPG
GPO-error2.JPG
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
7-
6
- +1
15 Comments
What is the first rule of change management - if you are unable to open an app because of the result of the change you just made.. roll it back - period..
Once you have rolled it back - does AD work again?
If it works, take the new code into a test lab and sort it out there.
Once you have rolled it back - does AD work again?
If it works, take the new code into a test lab and sort it out there.
Hi Shaik,
I am unable to start the service of Plug n Play. This is my big problem. Any workaround for this. I have doing this by logging with Domain administrator.
I am unable to start the service of Plug n Play. This is my big problem. Any workaround for this. I have doing this by logging with Domain administrator.
Active today
go to the services... right click the plug and play service
check dependencies ..
and start them all...
in services - click start up type - automatic status services should started..
try this...
check dependencies ..
and start them all...
in services - click start up type - automatic status services should started..
try this...
dependencies services are also disabled and cannot be enabled or start through this user. Any other idea?
Active today
check the virtual disk service ...
go to services. and start the virtual disk service
all the best
go to services. and start the virtual disk service
all the best
Active today
virtual disk service is depends on plug n play services... check weather it's start or not...
if not start it...
if not start it...
We have checked, but still whenever i tried to start virtual disk service. It is saying the dependency service not started, so it could not start. ERROR 1068
Active today
go to regedit
Please navigate to HKEY_LOCAL_MACHINE\SYSTEM\
locate Start registry key
right click Start registry key Edit Dward Value (value Data change to 2) select the Hexa Decimal
Change Startup type : Automatic -2
Automatic - 2
please take backup of your registry firs before attempting to regedit.
Please navigate to HKEY_LOCAL_MACHINE\SYSTEM\
locate Start registry key
right click Start registry key Edit Dward Value (value Data change to 2) select the Hexa Decimal
Change Startup type : Automatic -2
Automatic - 2
please take backup of your registry firs before attempting to regedit.
Active today
Have you tried to restart domain controller in normal mode, if yes, what error you are getting ? still you are facing same issues ?
If yes, How many domain controllers do you have ?
if you have more than one functional DCs, check if you are able to open all AD snap ins including GPMC on another functional server
Also check if all AD services are running on that server for ex:
Netlogon
NTFRS (File replication service)
Intersite messaging
Kerberos key distribution center
security accounts manager
AD domain services
Also check if Sysvol and netlogon shares are populated
In that case just remove affected server from network and if it contains FSMO roles just seize them on functional DC then do metadata cleanup on functional DC and rebuild the affected server from scratch and promote it again as ADC
if this is the only domain controller you have, then check if you have valid AD system state backup and if yes, just make authoritative restore of system state on affected server by restarting it in directory service restore mode and then check if its working
Mahesh.
If yes, How many domain controllers do you have ?
if you have more than one functional DCs, check if you are able to open all AD snap ins including GPMC on another functional server
Also check if all AD services are running on that server for ex:
Netlogon
NTFRS (File replication service)
Intersite messaging
Kerberos key distribution center
security accounts manager
AD domain services
Also check if Sysvol and netlogon shares are populated
In that case just remove affected server from network and if it contains FSMO roles just seize them on functional DC then do metadata cleanup on functional DC and rebuild the affected server from scratch and promote it again as ADC
if this is the only domain controller you have, then check if you have valid AD system state backup and if yes, just make authoritative restore of system state on affected server by restarting it in directory service restore mode and then check if its working
Mahesh.
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s
ManageEngine
webinar, where attendees received a comprehensive look at the ma…
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008.
Determine the location of the FSMO roles by lo…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten.
The USB drive must be s…
Suggested Courses
Course of the Month10 days, 13 hours left to enroll
770 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.