Group Policy Results tool does not return a complete list of security policies in Windows Server 2003 (830748)

SYMPTOMS

When you run the Group Policy Results tool (Gpresult.exe) on a Microsoft Windows Server 2003-based computer, the tool does not return a complete list of domain policies. For example, when you run the Gpresult.exe tool on a primary domain controller (PDC) emulator, you may receive the following output:

Account Policies
----------------
   GPO: Default Domain Policy
   Policy:            MaxServiceAge
   Computer Setting:  600

   GPO: Default Domain Policy
   Policy:            MaxTicketAge
   Computer Setting:  10

   GPO: Default Domain Policy
   Policy:            MinimumPasswordAge
   Computer Setting:  N/A

   GPO: Default Domain Policy
   Policy:            PasswordHistorySize
   Computer Setting:  3

   GPO: Default Domain Policy
   Policy:            MaxClockSkew
   Computer Setting:  5

   GPO: Default Domain Policy
   Policy:            MinimumPasswordLength
   Computer Setting:  N/A

   GPO: Default Domain Policy
   Policy:            LockoutBadCount
   Computer Setting:  N/A

   GPO: Default Domain Policy
   Policy:            MaximumPasswordAge
   Computer Setting:  43

   GPO: Default Domain Policy
   Policy:            MaxRenewAge
   Computer Setting:  7

However, when you run the Gpresult.exe tool on a computer that is not acting as the PDC emulator, you may receive the following output:

Account Policies
----------------
GPO: Default Domain Policy
Policy:            MaxServiceAge
Computer Setting:  600

GPO: Default Domain Policy
Policy:            MaxTicketAge
Computer Setting:  10

GPO: Default Domain Policy
Policy:            MaxClockSkew
Computer Setting:  5

GPO: Default Domain Policy
Policy:            MaxRenewAge
Computer Setting:  7

Group Policy Results tool does not return a complete list of security policies in Windows Server 2003 (830748)

SYMPTOMS

CAUSE

STATUS