Solved

Cannot add any features on Server 2012 R2 - "Access is denied. Error 0x80070005"

Posted on 2015-02-12
6
2,786 Views
Last Modified: 2015-03-03
Hello all:

I have a new Server 2012 R2 machine that has been promoted to a DC.

I am trying to add the Microsoft .NET Framework 3.5 Features but the installation always returned the same error:
 "The request to add or remove features on the specified server failed.  Installation of one or more roles, role services, or features failed.  Access is denied.  Error 0x80070005"

Upon further testing, I cannot add *ANY* features (e.g. "Windows Server Backup"), and all attempts at adding features returns the same "Access is denied.  Error 0x80070005" error.

I have tried restarting the server and examining the Windows Update and CBS logs but cannot find which components access is denied to.

Have any other EE members encountered this error and been able to find a resolution?
0
Comment
Question by:ajkjmspe
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 40607048
Based on the error message it is definitly a permission issue. have you checked the logs on the server to get more info? Also, you said this is a domain controller, do you have proper access to this machine after it has been added as a Domain Controller?

Will.
0
 

Accepted Solution

by:
ajkjmspe earned 0 total points
ID: 40627076
After thinking about the problem long and hard a week ago, I realized several applications had been installed.

The applications included:
   1) Hitman Pro Alert - to monitor the server for crypto-malware such as CryptoLocker or CryptoWall
   2) The WatchGuard Software Suite for WatchGuard Firebox devices
           Incl. the WatchGuard System Manager, Log Server, and Report Server

After manually uninstalling all of the above and rebooting the server, I was able to add all the desired features.

Thank you to all who read and assisted!
0
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 40627109
So those applications must have been blocking access/permissions when they were installed?

Will.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:ajkjmspe
ID: 40627117
So it would seem.

I highly suspect the crypto-malware blocker "Hitman Pro Alert" for the reason below.

I had no more problems installing roles, features (.NET Framework 3.5 included), and programs.  In fact, I reinstalled the WatchGuard software suite and was able to continue installing more programs afterwards that were giving me trouble before.
0
 

Author Comment

by:ajkjmspe
ID: 40627133
But thank you very much for taking the time to assist.

This problem even stumped Microsoft's technicians.

Literally a whole day was spent on the phone and watching them do miscellaneous things on the server remotely (none of which did anything to resolve the problem).
0
 

Author Closing Comment

by:ajkjmspe
ID: 40641483
After uninstalling the mentioned programs, installation of roles, features, and programs proceeded without any errors.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question