Error %1 occurred while attempting to enable the “Generate Security Audits” privilege. To grant the Generate Security Audits privilege to the Microsoft Exchange service account, open the Windows Group Policy editor. If the computer is not a domain controller, select the Local Computer policy object. If it is a domain controller, select the Browse button and select the “Domain Controllers.” container. Within this container, select the “Default Domain Controllers Policy” object. Under either “Local Computer policy” or “Default Domain Controllers Policy”, select the “Computer Configuration” container. Under the “Computer Configuration” container, select the “Windows Settings” container. Under the “Windows Settings” container, select the “Security Settings” container. Under the “Security Settings” container, select the “Local Policies” container. Under the “Local Policies” container, select the “User Rights Assignment” container. Under “User Rights Assignment”, double-click the “Generate Security Audits” object and add the Microsoft Exchange service account to the list of users granted the “Generate Security Audits” right. Click “OK”, and close the editor.

Details
Product: Exchange
Event ID: 9530
Source: MSExchangeIS
Version: 8.0
Symbolic Name: msgidAuditFailure
Message: Error %1 occurred while attempting to enable the “Generate Security Audits” privilege.
To grant the Generate Security Audits privilege to the Microsoft Exchange service account, open the Windows Group Policy editor.
If the computer is not a domain controller, select the Local Computer policy object. If it is a domain controller, select the Browse
button and select the “Domain Controllers.<domain>” container. Within this container, select the “Default Domain Controllers Policy”
object.

Under either “Local Computer policy” or “Default Domain Controllers Policy”, select the “Computer Configuration” container. Under
the “Computer Configuration” container, select the “Windows Settings” container. Under the “Windows Settings” container, select
the “Security Settings” container. Under the “Security Settings” container, select the “Local Policies” container. Under
the “Local Policies” container, select the “User Rights Assignment” container.

Under “User Rights Assignment”, double-click the “Generate Security Audits” object and add the Microsoft Exchange service account to the
list of users granted the “Generate Security Audits” right. Click “OK”, and close the editor.

   
Explanation

This Error event occurs during an attempt to start the Microsoft Exchange Information Store service and indicates that the Generate Security Audits privilege could not be enabled. This issue can occur if the Microsoft Exchange Information Store (Store.exe) is using an account other than the Local System account. The Local System account is granted certain privileges during setup.

   
User Action

To resolve this error, open Control Panel, and then configure the Local System account to be the account that starts the Microsoft Exchange Information Store service.

If you are not already doing so, consider running the tools that Microsoft Exchange offers to help administrators analyze and troubleshoot their Exchange environment. These tools can help you make sure that your configuration is in line with Microsoft best practices. They can also help you identify and resolve performance issues, improve mail flow, and better manage disaster recovery scenarios. Go to the Toolbox node of the Exchange Management Console to run these tools now. For more information about these tools, see Toolbox in the Exchange Server 2007 Help.

Related:

Leave a Reply