"Access denied" errors for domain controllers from the root domain

access denied root domain domain controller
Email It to Me Print this Page
Symptoms Each report from Netwrix Auditor for Active Directory contains "access denied" errors for the root domain domain controllers, when Netwrix Auditor is installed in a child domain and configured to monitor it.
Cause The  Netwrix Auditor for Active Directory service account is a member of the child domain and has no rights to access root domain controllers.
Resolution To remove the errors you are receiving for the root domain, do the following:
  1. Type "regedit" in the command prompt to open the Registry Editor.
  2. Navigate to the following node:
    • 32-bit OS: "HKEY_LOCAL_MACHINE/SOFTWARE/NetWrix\AD Change Reporter"
    • 64-bit OS: "HKEY_LOCAL_MACHINE/SOFTWARE/Wow6432Node/NetWrix\AD Change Reporter"
  3. Set the IgnoreRootDCErrors registry key value to 1 (decimal)
Was this information helpful?