The Microsoft Network Inspection service started by System Center 2012 Configuration Manager may be stopped by Active Directory Group Policy
- A Microsoft System Center 2012 Configuration Manager administrator sets the Enable protection against network-based exploits option to True and then deploys the policy to a collection of devices. This option is part of the Real-time protection item on the Antimalware tab for the Microsoft Forefront Endpoint Protection (FEP) policies in the Configuration Manager console.
- Then, the Configuration Manager client sets the start of the Microsoft Network Inspection service to Automatic on all devices in the target collection.
- An Active Directory administrator configures Group Policy to set the start for the Microsoft Network Inspection service to Disabled.
In this scenario, when the Group Policy settings are applied, the Microsoft Network Inspection service is stopped, and the start of the service is set to Disabled. When the Configuration Manager client evaluates Client Health and determines that the service is disabled, it remediates the problem by setting the start of the service to Automatic and starts the service again. However, the service soon stops again because the service is stopped by the Active Directory Group Policy.
Article ID: 2688238 - Last Review: 07/09/2012 21:19:00 - Revision: 2.0
- kbtshoot kbprb kbexpertiseinter kbsurveynew KB2688238