Solved

Domain Group policy software restrictions locked out  sbs 2003

Posted on 2014-07-29
4
582 Views
Last Modified: 2014-07-29
I have stupidly applied a domain group policy under software restrictions additional rules that have locked me out of running any programs.

This is true on the server and workstations.

What is the best method to allow access to the active directory group policy to enable me to remove the restriction?
0
Comment
Question by:leibhold
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 4

Accepted Solution

by:
jekautz earned 500 total points
ID: 40228143
The policies are files store under \\{fqdn}\sysvol\{fqdn}\policies.

You could try to access that folder and delete or rename the policy causing this effect.

Are you able to run Windows Explorer, Command Prompt, Regedit?  Any of these tools could be used to temporarily disable these features.  Since most all group policy settings are stored in the registry, you could delete those settings from the registry, enough to run GPMC.
0
 

Author Comment

by:leibhold
ID: 40228226
I was able to do a gpedit on the 2008 server to allow local programs to run

Have looked under  \\{fqdn}\sysvol\{fqdn}\policies and removed the file/dir that was last modified today
The gpupdate  comes back with processing group policy failed - unable to read the file .....

I am searching though the files to see what one contains the policy for the software restriction
0
 

Author Comment

by:leibhold
ID: 40228267
Hello,
would you like to write this up as a solution?

I took your advice - was able to find the file but  without it being there it would not update ended up

So on another sbs2003 created the default software restrictions policy.
Then opened Registry.pol in note pad on that server

I then copied the contents over the Registry.pol on the affected server in the sysvol  policies {31B2F340-016D-11D2-945F-00C04FB984F9} directory

This appears to have fixed the issue.

Please write the complete solution with your original section and I will award the points.

Thanks you very much for pulling my stupid self out of the fire.
0
 
LVL 4

Expert Comment

by:jekautz
ID: 40228313
I'm glad I could help, but I don't get what you mean by writing up the solution.  If you think my post fixed your problem, then simply mark it as the accepted solution.  That will award the points.

Have a good day.
0

Featured Post

Major Incident Management Communications

Major incidents and IT service outages cost companies millions. Often the solution to minimizing damage is automated communication. Find out more in our Major Incident Management Communications infographic.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question