Home > Windows Vista > Windows Vista Firewall

Windows Vista Firewall

December 1st, 2008 Jason Ross Leave a comment Go to comments

I was recently repairing a customers computer and noticed that their Windows Firewall was turned off. Windows was freaking out that the firewall was off and it was displaying it’s pop-up messages in the lower right hand corner of the screen. I clicked on the balloon message to turn on the firewall but I got a message saying that it could not start. I went into the services to try and manually turn on the firewall. I noticed that the firewall was set turn automatically run when the computer is turned on but the firewall was not started. I tried to manually start the firewall but I got an error saying something like this:

Windows could not start the Windows Firewall on Local Computer. For more information, review the System Event Log. If this is a non-Microsoft service, contact the service vendor, and refer to service-specific error code 5.

Checking the event log I also got a message something like this:

Source: Service Control manager Eventlog Provider.
Event ID: 7024
The Windows Firewall service terminated with service-specific error 5 (0×5)

The error code 5 has something to do with permissions. Doing some research I figured out how to fix this issue. I was able to go into the registry and set the correct permissions. When you are done, you will be able to start the Windows Firewall.

Solution:

Go into the registry editor and browse to the following keys. You will need to set the permissions for the following account NT Service\MpsSvc. The correct value is below the location path.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch

Query Value;Set Value

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy

Full Control;Read

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Defaults\FirewallPolicy

Full Control;Read
For the DHCP Client service, the issue may occur if the “NT Service\DHCP” account does not have the necessary permissions for the following keys:

Registry key:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dhcp
permission needed: Query value, Create value, Enumerate Subkeys, Notify, Read Control

Registry key:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dhcp\Configurations
permission needed: Full Control, Read

For the “Diagnostic Policy Service” service, the issue may occur when the account Trustedinstaller is missing the permissions for the key below:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DPS\Parameters

permission needed: Full Control, Read

Source: http://support.microsoft.com/kb/943996

Categories: Windows Vista Tags: , ,
  1. Tomas
    December 3rd, 2008 at 12:42 | #1
    Reply | Quote

    Hi Jason,

    Do the audio ports work on your dv5 1002nr that you downgraded to XP? Mine are not, and I’m trying to figure out if it’s a software or a hardware problem. I get sound, but the mic and headphone jacks in the front don’t do anything. thanks!

  2. seether
    January 1st, 2009 at 15:41 | #2
    Reply | Quote

    could someone provide an explanation on how to add those permissions, especially the query value;set value thing
    thx!

  3. Jason Ross
    January 2nd, 2009 at 10:15 | #3
    Reply | Quote

    Seether,

    1. Open the registry editor
    2. Browse the the locations inside the registry editor. The locations will be listed above in my post.
    3. Right click on the key name. It will be listed on the lefft hand side of the screen.
    4. Click permissions
    5. Click the advanced button.
    6. You will see a list of users. Highlight the user accounts and click on edit. It will bring you to a screen to edit the permissions.

  4. Jeff
    January 8th, 2009 at 19:32 | #4
    Reply | Quote

    Hi Jason,

    I have this WF problem in Home Premium Vista but my error code is 0x6D9. Also I noticed I don’t have the Windows Firewall Authorization Driver (mdsdrv.sys) under Device Manager (hidden files).
    Thanks.

  5. ????? ? ??????
    January 10th, 2009 at 06:38 | #5
    Reply | Quote

    Love your new blog. Can’t wait to see what you write about. Go for it!

  6. Speed Up Vista
    April 26th, 2009 at 11:52 | #6
    Reply | Quote

    A fantastic read….very literate and informative. Many thanks….where is your RSS button ?

  7. IT
    June 14th, 2009 at 15:29 | #7
    Reply | Quote

    THIS FIXED THE FIREWALL ISSUE I WAS HAVING! THANKS SO MUCH FOR THE ADVICE, IT WAS A BIT COMPLEX AT FIRST BUT I FIGURED IT OUT…THANKS A MILLION!

  8. lisa
    June 26th, 2009 at 21:18 | #8
    Reply | Quote

    I sure need some help in getting this same problem fix on my computer

  9. lisa
    June 26th, 2009 at 21:19 | #9
    Reply | Quote

    @IT

    tell me how you fix it

  10. Pony
    September 16th, 2009 at 16:14 | #10
    Reply | Quote

    this worked. thank you so much.
    kinda of confusing but figured it out.
    1. add this Service\MpsSvc and say check name
    2. then do all the permission change to that name.

    that was the part that was missing for me.

    cheers

  1. No trackbacks yet.