Fixed! Thanks to all who offered suggestions, and kudos to Karl for
directing me to the culprit registry entry
(hklm\software\classes\appid\{ce166e40-1e72-45b9-94c9-3b2050i8f180}).
Microsoft had me export it, then delete it. After a reboot the windows
firewall service started and appears to be functioning correctly. (So,
also thank you, Karl, for posting the Microsoft sp2 help phone line,
1-888-772-4357.)
For those inquiring minds out there, before Microsoft had me delete the
registry entry, I ran "sc sdshow sharedaccess" per Karl's suggestion on two
xpsp2 computers, one with the broken firewall service and the other with a
functioning firewall service. Following are what I believe to be the
critical differences in the output, pertaining to permissions for system;
I've inserted the --'s to highlight omitted permissions:
(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;SY)<-non-functional firewall
(A;;CC--LCSWRPWPDTLOCR--RC----;;;SY)<-functional firewall
-Pat
At 8/14/2004 12:40 AM, Karl R. Grose wrote:
>On Friday 13 August 2004 16:30, Pat McPeak wrote:
>
> > On my computer and on a laptop (not in campus ad) on which I've now
> > installed sp2 (with no untoward consequences that I have detected),
> > the {ce166e40-... AppID has 4 entries: (Default), AccessPermission,
> > LaunchPermission, and LocalService. Name for both (Default) and
> > LocalService is SharedAccess--but it's working fine on the laptop.
>
>How do the security descriptors for the SharedAccess service compare
>between these two systems? You can get a SDDL string using the
>following command on each system:
>
> sc sdshow sharedaccess
>
>To interpret the strings, look up SDDL or "ACE strings" on the MSDN
>site.
>
>--Karl
>
>=======
> > > > >On Wednesday 11 August 2004 10:29, Pat McPeak wrote:
> > > > > > "Could not start the Firewall/Internet Connection Sharing
> > > > > > (ICS) Service on Local Computer.
> > > > > >
> > > > > > Error 0x80004015: The class is configured to run as a
> > > > > > security id different from the caller."
> > > > >
> > > > >Did you try the fix mentioned in this case?
> > > > >
> > > > > http://support.microsoft.com/?kbid=246208
>
>------------------------------------------------------------------------
>The following was automatically added to this message by the list server:
>
>For information about Micronet, including subscribing to
>or unsubscribing from its mailing list and finding out
>about upcoming meetings, please visit the Micronet Web site:
><http://micronet.berkeley.edu/>.
------------------------------------------------------------------------
The following was automatically added to this message by the list server:
For information about Micronet, including subscribing to
or unsubscribing from its mailing list and finding out
about upcoming meetings, please visit the Micronet Web site:
<http://micronet.berkeley.edu/>.
Received on Wed Aug 18 12:12:13 2004
This archive was generated by hypermail 2.1.8 : Wed Aug 18 2004 - 12:12:23 PDT