Hello,
Thank you for posting in Q&A forum.
Deleting the registry will not solve the problem because the GPO will automatically update every 180 minutes in the background.
Here are some ways to find out which policy sets the firewall settings.
- Open cmd as domain and run the following command
gpresult /h C:\a.html or rsop
You can find the gpo report in directory C, or look at rsop open, you can check all the gpo that applies to this machine and see if there is any firewall related word here. Then disable it on the DC and check to see if your problem is solved.
- You know which registry value controls the firewall, then find this registry on the internet, it will show which gpo uses this registry. Then you can follow the first step to enter Gpresult to check which gpo uses this policy.
- Go to DC, check which OU this machine stays in--Open GPO Editor--Find out this OU, and then you will see how many GPOs are applied in this OU on the inheritance page--then click a gpo--and find the permissions page--Advanced--(Remember not to select computer by default here, you should first select computer by selecting type)--Select the machine with the problem, and on the permissions page, let this machine deny read. So, this machine will not apply this gpo, use this method to find out which gpo caused your problem
You can also go to the path C:\windows\sysvol\sysvol\domain name\policies\ of DC to change the permissions.
Best Regards,
Yanhong Liu
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.