gpupdate failed

Question

gpupdate failed

Anonymous

when perform "gupdate /force", always failed with below:

"Updating policy...

Computer policy could not be updated successfully. The following errors were encountered:

The processing of Group Policy failed. Windows attempted to retrieve new Group Policy settings for this user or computer. Look in the details tab for error code and description. Windows will automatically retry this operation at the next refresh cycle. Computers joined to the domain must have proper name resolution and network connectivity to a domain controller for discovery of new Group Policy objects and settings. An event will be logged when Group Policy is successful.

User Policy could not be updated successfully. The following errors were encountered:

The processing of Group Policy failed. Windows attempted to retrieve new Group Policy settings for this user or computer. Look in the details tab for error code and description. Windows will automatically retry this operation at the next refresh cycle. Computers joined to the domain must have proper name resolution and network connectivity to a domain controller for discovery of new Group Policy objects and settings. An event will be logged when Group Policy is successful.

To diagnose the failure, review the event log or run GPRESULT /H GPReport.html from the command line to access information about Group Policy results."

from the gpresult, i could see there error was on a guid {AEA1B4FA-97D1-45F2-A64C-4D69FFFD92C9}. But i couldnot find this policy exist in my domain.

Need help how to resolve it? thank you.

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question. To protect privacy, user profiles for migrated questions are anonymized.

3 answers

Answer 1

Hello PatJ_S,

Thank you for posting in Microsoft Community forum.

If the issue occurs on only this one machine?

Based on the information above, you can check something below:
1.Check network connectivity between this domain client and Domain Controller.

for example:
Ping IP of DC and ping domain name and ping FQDN of domain.
Check AD ports that need to be open between Domain client and DC.

2.Check DNS setting on this domain client, if the preferred DNS setting is the IP address of the DNS server (the IP address of the DC server if your DC is also DNS server).

3.Check the GPO name corresponding to {AEA1B4FA-97D1-45F2-A64C-4D69FFFD92C9}.

![](https://filestore.community.support.microsoft.com/api/images/3c32edf8-ea5a-4ed9-b49b-08db78a13ea9?upload=true&fud_access=wJJIheezUklbAN2ppeDns8cDNpYs3nCYjgitr%2BfFBh2dqlqMuW7np3F6Utp%2FKMltnRRYFtVjOMO5tpbpW9UyRAwvLeec5emAPixgq9ta07Dgnp2aq5eJbnfd%2FU3qhn54Ui9c7IY3%2BVaDGM794ieFEWFOTytTrMKy7m1XQpeIKlfhHZvv6qxFNypZh8EVO%2BjzMgLRnj7SrY%2FjVoV7qs8fDiK994oMxVrhrFAMYDcU%2FzowC8SNM3YdzzCkFwiQPqiCRNxEo7il4%2FZ13%2BJSKwY%2BsrAfo3dGDc2wIKthUv5RZgdJmJMnSQ%2BhXET7CyJ2QI%2FUmx3Q1VPQndUTLwoqifD3G%2BFYLJUESAQsQ9Socqdp1Vtck21K1fiyrUHrBX%2BzRsADTGM3zOF1iK8hzrpnV8uIwtym5N8MyDWaT0BuDtayD7c%3D)

4.Also, check if AD replication is working fine by running commands below on PDC.

repadmin /showrepl >c:\rep1.txt

repadmin /replsum >c:\rep2.txt

repadmin /showrepl * /csv >c:\repsum.csv

I hope the information above is helpful.

If you have any question or concern, please feel free to let us know.

Best Regards,
Daisy Zhou

Answer 2

Hi Daisy Zhou,

Thank you for your advise. However, i could not search the guid is exist in my domain controller server.

Ping & NSlookup for the dc also no issue. I also run the repadmin command seems all are ok without any error.

So really no idea what is happening on the DC server.

Answer 3

Anonymous

Hello PatJ_S,

Thank you for your reply.

How many Domain Controllers are there is this domain?

Have you check if this GUID exists on other DCs?

You can try to check if SYSVOL replication is working fine.

Best Regards,
Daisy Zhou

Share via

gpupdate failed

3 answers