Skip to content

disable RPC service via Group Policy

I found a great way to lock yourself out of every machine in your domain, just disable the RPC service.

Since the netlogon service relies on RPC, if you disable RPC on your domain you will no longer be able to log into a domain account. Furthermore, the client won’t be able to talk to the domain controller, so even if you re-enable it, the machine will never know.

The only fix I found is to boot off the windows CD into recovery mode and run “enable rpcss service_auto_start”

Post a Comment

You must be logged in to post a comment.