techcodr
asked on
How do I solve Event 513 CAPI2?
Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Access is denied.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Access is denied.
ASKER
Yes, I could still use help. I have no answer.
Could you provide some context on what happened to get what you have posted?
What is the problem you're trying to solve?
What is the problem you're trying to solve?
ASKER
I am trying to up with the solution to stop this error from occurring.
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
ASKER
Seems the first link goes to the second link.
I could not start with the second link solution because accesschk.exe is not recognized as a command.
:\Windows\system32>accessc hk.exe -c mslldp
'accesschk.exe' is not recognized as an internal or external command,
operable program or batch file.
I could not start with the second link solution because accesschk.exe is not recognized as a command.
:\Windows\system32>accessc
'accesschk.exe' is not recognized as an internal or external command,
operable program or batch file.
Yes the first link does as first gives details and the second one solution.
Accesschk.exe is a microsft sysinternals file, can be downloaded here:
https://docs.microsoft.com/en-us/sysinternals/downloads/accesschk
Accesschk.exe is a microsft sysinternals file, can be downloaded here:
https://docs.microsoft.com/en-us/sysinternals/downloads/accesschk
ASKER
I could not exactly follow the instructions.
1. The Windows Server 2016 is 64 bits so I had to start with accesschk64 -c mslldp (did not need the .exe)
2. I was not exactly clear where to put the (A;;CCLCSWLOCRRC;;;SU)
Given:
accesschk.exe -c mslldp
mslldp
RW NT AUTHORITY\SYSTEM
RW BUILTIN\Administrators
RW S-1-5-32-549 <- these are server operators
R NT SERVICE\NlaSvc
1. Run: SC sdshow MSLLDP
You'll get something like below (SDDL language is documented on MSDN):
D:(D;;CCDCLCSWRPWPDTLOCRSD RCWDWO;;;B G)(A;;CCDC LCSWRPWPDT LOCRSDRCWD WO;;;SY)(A ;;CCDCLCSW RPDTLOCRSD RCWDWO;;;B A)(A;;CCDC LCSWRPWPDT LOCRSDRCWD WO;;;SO)(A ;;LCRPWP;; ;S-1-5-80- 3141615172 -205787808 5-17544472 12-2405740 020-391649 0453)S:(AU ;FA;CCDCLC SWRPWPDTLO CRSDRCWDWO ;;;WD)
Four items listed in accesschk.exe -c mslldp but the divisions were more in SC sdshow MSLLDP using () to separate items.
D:(D;;CCDCLCSWRPWPDTLOCRSD RCWDWO;;;B G)
(A;;CCDCLCSWRPWPDTLOCRSDRC WDWO;;;SY)
(A;;CCDCLCSWRPDTLOCRSDRCWD WO;;;BA)
(A;;CCDCLCSWRPWPDTLOCRSDRC WDWO;;;SO)
(A;;LCRPWP;;;S-1-5-80-3141 615172-205 7878085-17 54447212-2 405740020- 3916490453 )S:(AU;FA; CCDCLCSWRP WPDTLOCRSD RCWDWO;;;W D)
Looks like four lines and some sort of closer. Seems the (A;;CCLCSWLOCRRC;;;SU) should be before (A;;LCRPWP;;;S-1-5-80-3141 615172-205 7878085-17 54447212-2 405740020- 3916490453 )S:(AU;FA; CCDCLCSWRP WPDTLOCRSD RCWDWO;;;W D).
But the link says put in the middle of the last line.
(A;;LCRPWP;;;S-1-5-80-3141 615172-205 7878085-17 54447212-2 405740020- 3916490453 )(A;;CCLCS WLOCRRC;;; SU)S:(AU;F A;CCDCLCSW RPWPDTLOCR SDRCWDWO;; ;WD)
That looks wrong.
Link says Take NT AUTHORITY\ SERVICE entry, which is (A;;CCLCSWLOCRRC;;;SU) and add it to the original MSLLDP security descriptor properly, right before the last S:(AU... group. But did not get an S:
I decided to put the (A;;CCLCSWLOCRRC;;;SU) in front of the last line.
Which seemed to work.
C:\>accesschk64 -c mslldp
Accesschk v6.12 - Reports effective permissions for securable objects
Copyright (C) 2006-2017 Mark Russinovich
Sysinternals - www.sysinternals.com
mslldp
RW NT AUTHORITY\SYSTEM
RW BUILTIN\Administrators
R BUILTIN\Server Operators
R NT AUTHORITY\SERVICE
R NT SERVICE\NlaSvc
1. The Windows Server 2016 is 64 bits so I had to start with accesschk64 -c mslldp (did not need the .exe)
2. I was not exactly clear where to put the (A;;CCLCSWLOCRRC;;;SU)
Given:
accesschk.exe -c mslldp
mslldp
RW NT AUTHORITY\SYSTEM
RW BUILTIN\Administrators
RW S-1-5-32-549 <- these are server operators
R NT SERVICE\NlaSvc
1. Run: SC sdshow MSLLDP
You'll get something like below (SDDL language is documented on MSDN):
D:(D;;CCDCLCSWRPWPDTLOCRSD
Four items listed in accesschk.exe -c mslldp but the divisions were more in SC sdshow MSLLDP using () to separate items.
D:(D;;CCDCLCSWRPWPDTLOCRSD
(A;;CCDCLCSWRPWPDTLOCRSDRC
(A;;CCDCLCSWRPDTLOCRSDRCWD
(A;;CCDCLCSWRPWPDTLOCRSDRC
(A;;LCRPWP;;;S-1-5-80-3141
Looks like four lines and some sort of closer. Seems the (A;;CCLCSWLOCRRC;;;SU) should be before (A;;LCRPWP;;;S-1-5-80-3141
But the link says put in the middle of the last line.
(A;;LCRPWP;;;S-1-5-80-3141
That looks wrong.
Link says Take NT AUTHORITY\ SERVICE entry, which is (A;;CCLCSWLOCRRC;;;SU) and add it to the original MSLLDP security descriptor properly, right before the last S:(AU... group. But did not get an S:
I decided to put the (A;;CCLCSWLOCRRC;;;SU) in front of the last line.
Which seemed to work.
C:\>accesschk64 -c mslldp
Accesschk v6.12 - Reports effective permissions for securable objects
Copyright (C) 2006-2017 Mark Russinovich
Sysinternals - www.sysinternals.com
mslldp
RW NT AUTHORITY\SYSTEM
RW BUILTIN\Administrators
R BUILTIN\Server Operators
R NT AUTHORITY\SERVICE
R NT SERVICE\NlaSvc
I am here to help you with your open question. Do you still need help? I have the ability to alert more experts if you still need help.
If you solved the problem on your own, would you please post the solution here in case others have the same problem?
If you need me to delete this question just say "Delete."
Thank you for using Experts Exchange.
Regards,
Kyle Santos
Customer Relations