Results 1 to 6 of 6

Thread: Using ZoneAlarm in an Active Directory environment.

  1. #1
    andychips Guest

    Default Using ZoneAlarm in an Active Directory environment.

    Can
    anyone recommend any standard settings for ZoneAlarm when used in an Active Directory environment? More specifically, I need to know why WINLOGON.EXE on a Windows XP client is being blocked from connecting to the AD
    Domain Controller
    in the 'local zone' (as it calls it).
    If I delete the corresponding program (Windows NT Logon Application) from ZoneAlarm's registered programs I can then respond 'Allow' to the prompt when it appears.
    This works for an hour or two and then it reverts to being blocked. There seems to be no way to permanently set it to 'Allow'.
    Even making sure all the checks are green makes no difference. These revert to red X's. I then suffer bad domain logons, bad computer domain accounts, no login script running and Event ID 1054 errors in the client's event log.
    All my machines are in the Trusted Zone (192.168.1.x) so I don't see why it's picking on WINLOGON.EXE.
    This is affecting all three clients, which have all been rebuilt 2-3 times and each time a latest fresh copy of ZoneAlarm is installed. I'm hoping someone can help, please.
    Andy.

    Here are the version details for an one of the PCs (I know it's not the latest build, but I've suffered the same symptoms with every previous version as well):
    ZoneAlarm Security Suite version:7.0.462.000
    TrueVector version:7.0.462.000
    Driver version:7.0.462.000
    Anti-virus engine version:3
    Anti-virus SDK version:5.0.1.82
    Anti-virus signature DAT file version:947608627
    Anti-spyware engine version:5.0.189.0
    Anti-spyware signature DAT file version:01.200803.3565
    AntiSpam version:5.0.6.8903


    Operating System:Windows XP Pro
    Software Version:
    Product Name:ZoneAlarm Internet Security Suite

  2. #2
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,287

    Default Re: Using ZoneAlarm in an Active Directory environment.

    Hi!
    Interesting problem...
    Are you working on a ZA where settings have been imported (backup) or really a fresh install with no previous settings?
    ZA does not change permission if you set "Windows NT Logon Application" to 'custom' (and not AUTO) in the ZA program control.

    Windows NT Logon Application by default is set to allow internet/trusted access and question marks (?) to all the rest. It should not reset itself to a block (X) status.

    Change the settings to allow all (all green checks).
    Shutdown ZA, wait a minute, open again ZA and check the setting remained the same.

    If the custom settings are changed back to 'system settings' or block state than your settings are corrupted and need a reset.

    This way:
    1.) Hold down the Ctrl and Shift keys together
    2.) Right click on the ZA icon near your clock
    3.) Choose 'Reset' from the box that comes up
    4.) Choose Yes on the Reset Settings dialog box
    5.) When prompted, choose OK to restart your system
    6.) Follow the on screen configuration prompts after reboot

    Do not restore any previous backups of the ZA settings and test again.

    Cheers,
    Fax

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

  3. #3
    andychips Guest

    Default Re: Using ZoneAlarm in an Active Directory environment.

    Hi Fax. Thanks for the quick reply.The answer to your first question is: mixed. Two of the PCs have been rebuilt several times with a fresh install of ZA. One of them
    has had ZA
    continuously upgraded. They are all behaving exactly the same.The most obvious change I can try is setting the program to 'Custom'. I shall do that and report back.Thanks,A.

  4. #4
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,287

    Default Re: Using ZoneAlarm in an Active Directory environment.

    You're welcome!
    Please post back with your results.

    Cheers,
    Fax

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

  5. #5
    andychips Guest

    Default Re: Using ZoneAlarm in an Active Directory environment.

    Just thought I'd come back here and post my results.In a nutshell: it's all OK now. Forcing WINLOGON.EXE to Custom status seems to have cured all the 1054 error events. Thanks Fax for your help.

  6. #6
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,287

    Default Re: Using ZoneAlarm in an Active Directory environment.

    You're welcome!
    Thank you for the confirmation.

    Cheers,
    Fax

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •