0

Not a bug

Install on Domain Controller

10 years ago • updated by 10 years ago • 15

We get an error when installing the Anturis Aagent on the Windows Domain Controller.
"Anturis Monitoring Setup Wizard ended prematurely".

The install log shows this after Installfiles:
-------------------------------------------------------------------------------------
Action 12:33:40: InstallFiles. Copying new files
InstallFiles: File: agent-service.exe, Directory: C:\Program Files\Anturis\Anturis Monitoring\, Size: 348160
...
InstallFiles: File: Microsoft.VC90.CRT.manifest, Directory: C:\Program Files\Anturis\Anturis Monitoring\Microsoft.VC90.CRT\, Size: 442
Action 12:33:43: CallAddUserToGroup.
DLL_AddUserToGroup: Initialized.
DLL_AddUserToGroup: Get ANTURIS_USER_NAME=__Anturis_Agent__
DLL_AddUserToGroup: Check XP: 0
DLL_AddUserToGroup: Try to get name for WinBuiltinPerfMonitoringUsersSid
DLL_AddUserToGroup: Failed to lookup account sid (1332)
DLL_AddUserToGroup: Error 0x80070534: Failed to add user to WinBuiltinPerfMonitoringUsersSid
Action ended 12:33:43: InstallFinalize. Return value 3.
Action 12:33:43: Rollback. Rolling back action:
Rollback: CallAddUserToGroup
...
-------------------------------------------------------------------------------------

Vote

Replies 15
Oldest first
- Newest first
- Oldest first

Under review

Hi,

What version of Windows Domain Controller do you use?

Reply
|

Windows 2003

Reply
|

What service pack version?

Reply
|

Microsoft Windows Server 2003, Standard Edition SP1 (5.2.3790)

Reply
|

During installation our agent create user and trying to add it to system group 'Performance Monitor Users'. Unfortunately, installation script cannot find this group. Please check do you have such group and can you add any user to this group?

Reply
|

A domain controller does not have any system users or groups. As the domain controller, it only has domain users and groups.
See last paragraph: http://technet.microsoft.com/en-ca/library/cc785020%28v=ws.10%29.aspx
"You cannot use Local Users and Groups to view local user and group accounts once a member server has been promoted to a domain controller."

Reply
|

Please send us output of command: net localgroup

Reply
|

The output lists all of our domain groups in the domain: over 3600 groups. I doubt you want me to post this.
I scrolled down to look for 'Performance Monitor Users' but as you can see, it does not exist.

Reply
|

Strange. Our test domain controller on 2003 with sp1 have it:

Reply
|

I recreated these 2 groups: Performance Monitor Users, Performance Log Users.

I re-ran the install and it failed. Here's the log. please let me know. thanks.
Action 10:33:03: CallAddUserToGroup.
DLL_AddUserToGroup: Initialized.
DLL_AddUserToGroup: Get ANTURIS_USER_NAME=__Anturis_Agent__
DLL_AddUserToGroup: Check XP: 0
DLL_AddUserToGroup: Try to get name for WinBuiltinPerfMonitoringUsersSid
DLL_AddUserToGroup: Failed to lookup account sid (1332)
DLL_AddUserToGroup: Error 0x80070534: Failed to add user to WinBuiltinPerfMonitoringUsersSid
Action ended 10:33:03: InstallFinalize. Return value 3.
Action 10:33:03: Rollback. Rolling back action:

Reply
|

Please check the SID of this groups. Performance Monitor Users should be SID: S-1-5-32-558 and Performance Log Users should be SID: S-1-5-32-559

Reply
|

unfortunately no. the built-in groups were deleted many years ago. The new groups do not have the standard SID. I don't know how to set this.

Reply
|

As far as we know there is no way to change SID to builtin SID. Unfortunately, our agent will not work on your domain controller.

Reply
|

Thats ok. I used an agent on another server to monitor the services on the DC via a script. works great. thanks for your help.

Reply
|

Not a bug

Reply
|

Customer support service by UserEcho