Security Settings policies are propagated with warnings
Updated: March 2, 2005
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2
In Windows 2000, Scecli.dll events 1202 and 1000 may occur every 5 minutes on domain controllers and every 90 minutes on clients in some situations. As a result, security settings propagate with warnings and the Security Settings Group Policy client side extension may fail.
These Scecli.dll events might occur in cases such as the following:
An administrator has installed a program which creates user accounts and assigns rights to those user accounts. Later, the administrator removes the program, which deletes the user accounts, but does not remove the rights from Group Policy before the accounts are deleted.
An administrator adds a user account and assigns rights to the account. Later, the administrator deletes the account, but does not remove the account from the user rights policy.
These events can indicate a failure to resolve a security account to a security identifier (SID) or a broken trust relationship.
There are several different issues that make up the Scecli.dll event ID 1202 category of warnings; these are collectively referred to as "1202 events." The error code in the event log warning specifies the type of problem that was encountered.
To see diagnostic and troubleshooting information about the 1202 events:
Determine the error code from the event log notification (for example 0x4b8).
Find the error code section in Troubleshooting SCECLI 1202 Events on the Microsoft Web site (http://go.microsoft.com/fwlink/?LinkId=39979), and then follow the troubleshooting steps in that section.
For information about security policies propagating with warning 0x534, see Error Message: Security Policies Are Propagated with Warning. 0x534 on the Microsoft Web site (http://go.microsoft.com/fwlink/?LinkId=39980).