Bookmark and Share Subscribe Bookmark and Share



System.Security.AccessControl.PrivilegeNotHeldException error during SharePoint Products Configuration Wizard on MOSS 2007 or SharePoint 2010


 « »    

When reviewing the event log you will see the following error and you get the error in the screen shot below.

Failed to create the configuration database.

An exception of type System.Security.AccessControl.PrivilegeNotHeldException was thrown.  Additional exception information: The process does not possess the ‘SeSecurityPrivilege’ privilege which is required for this operation. System.Security.AccessControl.PrivilegeNotHeldException: The process does not possess the ‘SeSecurityPrivilege’ privilege which is required for this operation

In this particular case the problem came down to the account running the configuration wizard not having “Manage auditing and security log” rights in Group Policy. This setting was modified by a GPO in Active Directory.

We can see that this GPO was modified, in this case, probably for Exchange because “Exchange Enterprise Servers” was explicitly added.

You have two options to correct this issue:

  1. Add MOSS 2007 or SharePoint 2010 Service Accounts to this GPO – This is not recommended because we do not know what else is configured in this GPO that can cause issues.
  2. Move the computer account to an OU that is blocking inheritance. – This is the preferred method because we don’t know what else is configured in the GPO that can cause other issues.

    Did I save you time and headaches? Buy me a cup of coffee.
    The more coffee I drink the more articles I can write.

1 Comment so far

    • Craig Wales said:
    • Posted on June 4th, 2012 at 4:49 pm
    • Reply
    • Permalink

    Can this policy be removed once the installation is complete?

Leave a comment

Trackbacks on this post