Event ID 10021 — COM Security Policy Configuration

Updated: February 22, 2008

Applies To: Windows Server 2008

red

COM+ applications use Microsoft Component Object Model (COM) technology in Microsoft Windows operating systems to communicate and take advantage of Windows services. COM technologies include COM+, DCOM, and ActiveX Controls.

An administrator can use the Component Services administrative tool to control the COM + application security policy through configurable settings that are located on the Security tab of the application's properties sheet.

Event Details

Product: Windows Operating System
ID: 10021
Source: Microsoft-Windows-DistributedCOM
Version: 6.0
Symbolic Name: EVENT_DCOM_INVALID_SERVER_ACTIVATION_SECURITY_DESCRIPTOR
Message: The launch and activation security descriptor for the COM Server application with CLSID
%1
is invalid. It contains Access Control Entries with permissions that are invalid. The requested action was therefore not performed. This security permission can be corrected using the Component Services snap-in.

Resolve

Check the application's security policy

The text of the event message may provide details to help you configure the application security policy. Use the Component Services administrative tool to update the application security policy to allow the requested operation to complete.

To perform this procedure, you must have membership in Administrators, or you must have been delegated the appropriate authority.

To open Component Services and find the application's security properties:

  1. Click Start, and then click Run.
  2. Type comexp.msc, and then click OK. If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Continue.
  3. To locate your application, click Component Services, click Computers, click My Computer, and then click COM+ Applications.
  4. Right-click the application name, and then click Properties.
  5. In the application properties dialog box, click the Security tab, and then adjust the security settings to allow the requested operation to complete.

Verify

You can verify that your security policy for this server is configured properly by running the Component Services administrative tool and ensuring that the required security properties are set.

To perform this procedure, you must have membership in Administrators, or you must have been delegated the appropriate authority.

To open Component Services and verify that the required security properties are set:

  1. Click Start, and then click Run.
  2. Type comexp.msc, and then click OK. If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Continue.
  3. To locate your computer, click Component Services, click Computers, and then click My Computer.
  4. Right-click My Computer, and then click Properties.
  5. Click the COM Security tab, and confirm that the Access Permissions and Launch and Activition Permissions properties are set properly.

Related Management Information

COM Security Policy Configuration

Application Server

Community Additions

ADD
Show: