These CIS benchmarks are a pain.Įdit: the access denied is coming from the UAC settings in the GPO. Really sorry if none of this helps just thought I'd share. Or hopefully something else I mentioned can help. Not sure this will help much as this was not at the server level, but maybe you can make/access a local admin account that is able to run as admin. This allowed me run Power Shell as admin, enable SMBv1 and v2 using script and then change settings to start Lanman workstation services manually. Then from there it recognized my credentials (as local account), and I was able to retrieve the local admin account password using LAPS, and login as the local admin. I did this by creating an OU that blocks the GPO, then I had to log into them using a separate remote service (Zoho) since RDP stopped recognizing network credentials and it isn't a physical machine. First you must disable the CIS benchmark GPO. I used a Power Shell script to disable and re-enable them. It disabled the SMBv1 and v2 which in turn blocked the Lanman workstation service from starting(which stopped the machines from contacting the domain controller, so no account was recognized with permission associated with it on the network level). It was on some Win10 and all Win7 virtual machines. Had a similar issue to this but it was not server level OU. Update late evening : We've been able to restore quite a few servers now, but it's time consuming.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |