Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies. Only from Platform Scholar.
Course Of The Month
3 days, 5 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Remote Group Policy Update error code 8007071a - remote procedure procedure call was cancelled
Posted on 2014-12-18
Using AD 2012 - do a Group Policy Update from the Group Policy MMC to all servers in the Domain and I get the eror :-
Computer Name , 8007071a , Error The Romote procedure call was cancelled.
Not sure if it stops the polcy being pushed out to the server. I have looked at the link to check what ports are needed open from the the DC's. All seemed covered as in the list in the link below
http://technet.microsoft.com/en-gb/library/dd772723%28v=ws.10%29.aspx
Appreciate if soemone have enlighten me how to resolve this and what is NOT beign replicated
Computer Name , 8007071a , Error The Romote procedure call was cancelled.
Not sure if it stops the polcy being pushed out to the server. I have looked at the link to check what ports are needed open from the the DC's. All seemed covered as in the list in the link below
http://technet.microsoft.com/en-gb/library/dd772723%28v=ws.10%29.aspx
Appreciate if soemone have enlighten me how to resolve this and what is NOT beign replicated
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
5-
3
8 Comments
The gpupdate /force complets and the gpresult /v seems to report no errors, see output below, :-
C:\Users\supps>gpresult /v
Microsoft (R) Windows (R) Operating System Group Policy Result tool v2.0
c 2013 Microsoft Corporation. All rights reserved.
Created on 12/18/2014 at 4:04:54 PM
RSOP data for EUW01\supps on EUW01-DC-001 : Logging Mode
--------------------------
OS Configuration: Primary Domain Controller
OS Version: 6.3.9600
Site Name: N/A
Roaming Profile: N/A
Local Profile: C:\Users\supps
Connected over a slow link?: No
USER SETTINGS
--------------
CN=Paul Smith,OU=Infrastructure,OU
,DC=intamac,DC=com
Last time Group Policy was applied: 12/18/2014 at 2:36:25 PM
Group Policy was applied from: euw01-dc-001.euw01.intamac
Group Policy slow link threshold: 500 kbps
Domain Name: EUW01
Domain Type: Windows 2008 or later
Applied Group Policy Objects
--------------------------
N/A
The following GPOs were not applied because they were filtered out
--------------------------
Local Group Policy
Filtering: Not Applied (Empty)
The user is a part of the following security groups
--------------------------
Domain Users
Everyone
BUILTIN\Users
BUILTIN\Pre-Windows 2000 Compatible Access
BUILTIN\Administrators
REMOTE INTERACTIVE LOGON
NT AUTHORITY\INTERACTIVE
NT AUTHORITY\Authenticated Users
This Organization
LOCAL
Infastructure
Domain Admins
Enterprise Admins
Authentication authority asserted identity
Denied RODC Password Replication Group
High Mandatory Level
The user has the following security privileges
--------------------------
Resultant Set Of Policies for User
--------------------------
Software Installations
----------------------
N/A
Logon Scripts
-------------
N/A
Logoff Scripts
--------------
N/A
Public Key Policies
-------------------
N/A
Administrative Templates
------------------------
N/A
Folder Redirection
------------------
N/A
Internet Explorer Browser User Interface
--------------------------
N/A
Internet Explorer Connection
--------------------------
N/A
Internet Explorer URLs
----------------------
N/A
Internet Explorer Security
--------------------------
N/A
Internet Explorer Programs
--------------------------
N/A
C:\Users\supps>gpresult /v
Microsoft (R) Windows (R) Operating System Group Policy Result tool v2.0
c 2013 Microsoft Corporation. All rights reserved.
Created on 12/18/2014 at 4:04:54 PM
RSOP data for EUW01\supps on EUW01-DC-001 : Logging Mode
--------------------------
OS Configuration: Primary Domain Controller
OS Version: 6.3.9600
Site Name: N/A
Roaming Profile: N/A
Local Profile: C:\Users\supps
Connected over a slow link?: No
USER SETTINGS
--------------
CN=Paul Smith,OU=Infrastructure,OU
,DC=intamac,DC=com
Last time Group Policy was applied: 12/18/2014 at 2:36:25 PM
Group Policy was applied from: euw01-dc-001.euw01.intamac
Group Policy slow link threshold: 500 kbps
Domain Name: EUW01
Domain Type: Windows 2008 or later
Applied Group Policy Objects
--------------------------
N/A
The following GPOs were not applied because they were filtered out
--------------------------
Local Group Policy
Filtering: Not Applied (Empty)
The user is a part of the following security groups
--------------------------
Domain Users
Everyone
BUILTIN\Users
BUILTIN\Pre-Windows 2000 Compatible Access
BUILTIN\Administrators
REMOTE INTERACTIVE LOGON
NT AUTHORITY\INTERACTIVE
NT AUTHORITY\Authenticated Users
This Organization
LOCAL
Infastructure
Domain Admins
Enterprise Admins
Authentication authority asserted identity
Denied RODC Password Replication Group
High Mandatory Level
The user has the following security privileges
--------------------------
Resultant Set Of Policies for User
--------------------------
Software Installations
----------------------
N/A
Logon Scripts
-------------
N/A
Logoff Scripts
--------------
N/A
Public Key Policies
-------------------
N/A
Administrative Templates
------------------------
N/A
Folder Redirection
------------------
N/A
Internet Explorer Browser User Interface
--------------------------
N/A
Internet Explorer Connection
--------------------------
N/A
Internet Explorer URLs
----------------------
N/A
Internet Explorer Security
--------------------------
N/A
Internet Explorer Programs
--------------------------
N/A
I have to wonder if you still have a firewall issue if the update runs when run locally on the other servers.
I had one server network card that thought it was not in the domain for some reason so the firewalls ports were still blocked.
If you run this from a command prompt on the receiving servers you will fully turn off the firewalls. Then try the remote update and see if you get the same errors.
NetSh Advfirewall set allprofiles state off
Speaking of have you tried the remote update since you did the GPupdate /force?
Lastly It also could be WMI related see the link below it talks about the process for updates. You might try to rebuild WMI on the servers.
http://technet.microsoft.com/en-us/library/jj134201.aspx
I had one server network card that thought it was not in the domain for some reason so the firewalls ports were still blocked.
If you run this from a command prompt on the receiving servers you will fully turn off the firewalls. Then try the remote update and see if you get the same errors.
NetSh Advfirewall set allprofiles state off
Speaking of have you tried the remote update since you did the GPupdate /force?
Lastly It also could be WMI related see the link below it talks about the process for updates. You might try to rebuild WMI on the servers.
http://technet.microsoft.com/en-us/library/jj134201.aspx
Firewall command prompts can be found here:
http://www.windowsnetworking.com/kbase/WindowsTips/WindowsServer2008/AdminTips/Admin/QuicklyTurnONOFFWindowsFirewallUsingCommandLine.html
http://www.windowsnetworking.com/kbase/WindowsTips/WindowsServer2008/AdminTips/Admin/QuicklyTurnONOFFWindowsFirewallUsingCommandLine.html
Yes, we are running within the AWS cloud environment. It is slightly differnet in that you setup security groups on member servers to allow tarffic into it. TO make it wasier, I allowed the DC's to be able to communicate over any ports ONLY to the member server. Although I added all the ports as per the URL I provided from Microsoft this obviously needed another port not documented. within the policy, all firewalling is turned off.
Featured Post
With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Background Information
Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Know what services you can and cannot, should and should not combine on your server.
In this Micro Tutorial viewers will learn how they can get their files copied out from their unbootable system without need to use recovery services. As an example non-bootable Windows 2012R2 installation is used which has boot problems.
In this Micro Tutorial viewers will learn how to restore single file or folder from Bare Metal backup image of their system. Tutorial shows how to restore files and folders from system backup. Often it is not needed to restore entire system when onl…
Suggested Courses
Course of the Month3 days, 5 hours left to enroll
696 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.