Access Violation in Lsass.exe When Using Security Packages (264600)


The information in this article applies to:

  • Microsoft Windows 2000 Server
  • Microsoft Windows 2000 Advanced Server
  • Microsoft Windows 2000 Professional
This article was previously published under Q264600
IMPORTANT: This article contains information about modifying the registry. Before you modify the registry, make sure to back it up and make sure that you understand how to restore the registry if a problem occurs. For information about how to back up, restore, and edit the registry, click the following article number to view the article in the Microsoft Knowledge Base:

256986 Description of the Microsoft Windows Registry

SYMPTOMS

WARNING: If you use Registry Editor incorrectly, you may cause serious problems that may require you to reinstall your operating system. Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly. Use Registry Editor at your own risk.

Lsass.exe may generate access violations during startup if you are using Security packages. This may require the following registry key to be added:

HKLM\System\CurrentControlSet\Control\Lsa\AuditBaseObjects
REG_DWORD: 1

CAUSE

While Lsass.exe is accessing an object, its memory is being freed. The reference count on the object is not being increased when it is connected to with another object.

RESOLUTION

To resolve this problem, obtain the latest service pack for Windows 2000. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:

260910 How to Obtain the Latest Windows 2000 Service Pack

The English version of this fix should have the following file attributes or later: 
   Date      Time   Version        Size    File name  
   ---------------------------------------------------
   6/8/2000  06:01  5.0.2195.2096  46,352  Secur32.dll

STATUS

Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article. This problem was first corrected in Windows 2000 Service Pack 2.
Modification Type:MinorLast Reviewed:9/23/2005
Keywords:kbHotfixServer kbQFE kbbug kbfix kbWin2000PreSP2Fix KB264600
©2004 Microsoft Corporation. All rights reserved.