Well, I've enabled Remote Administration,Remote Event Log Management, and Remote Service Management exceptions in the Windows Firewall on both my Vista Ultimate workgroup computers; call them V1, and V2. I've restarted both machines, but I'm still unable to remote manage the event logs, and servicesfrom either machine via the computer management console. I receive an 'Access denied' message in compmgmt.msc console when attempting to access an event log, and services are not displayed at all on the remote Vista machines; resulting in a controlled console recovery. Performing an rpcping from V1 to V2 for example, results in: Exception 1722 (0x000006BA)Number of records is: 4ProcessID is 5164System Time is: 9/2/2008 21:10:37:226Generating component is 8Status is 0x6BA, 1722Detection location is 1442Flags is 0NumberOfParameters is 1Unicode string:V2ProcessID is 5164System Time is: 9/2/2008 21:10:37:225Generating component is 8Status is 0x4D5, 1237Detection location is 313Flags is 0NumberOfParameters is 0ProcessID is 5164System Time is: 9/2/2008 21:10:37:225Generating component is 8Status is 0x274C, 10060Detection location is 311Flags is 0NumberOfParameters is 3Long val: 0x87Pointer val: 0x0Pointer val: 0x0ProcessID is 5164System Time is: 9/2/2008 21:10:37:225Generating component is 8Status is 0x274C, 10060Detection location is 318Flags is 0NumberOfParameters is 0 --------------------------------- OR------------------------------------------- Exception 5 (0x00000005)Number of records is: 1ProcessID is 3836System Time is: 9/2/2008 21:32:10:848Generating component is 2Status is 0x5, 5Detection location is 1750Flags is 0NumberOfParameters is 1Long val: 0x5 I'm trying to decipher the above results. However, I can remote manage services, and event logs via the compmgmt.msc console *from*V1 or V2 *to* my XP machine...not the other way around. If I use 'eventvwr.exe remote server' on the command-line (run underadmin privileges), I get 'The RPC server is unavailable', or 'Access denied'messages in the event viewer application/snap-in. I have admin privileges, and accounts on all machines in the workgroup. BTW, I can't even do remote shutdown of the Vista machines either. Any suggestions?

Hi, The issue can occur if the 135 port is blocked. Please open this port on the Windows Vista computers. 1. Click Start->Control Panel. Double-click Windows Firewall. 2. Click "Change Settings". 3. Click the tab "Exceptions".4. Click "Add port". 5. Type a name for this exception, enter "135" (without quotation) in "Port number". Select TCP. 6. Click OK to quit. Is the issue resolved? If it persists, please temporary disable the installed anti-viruses on the Windows Vista computers. Also check if there are any other firewalls installed. If so, remove them. Hope it helps

Thank you for your reply. However, I've enabled all inbound firewall exceptions for the 'Remote Event Log Management' rules on both workstations using 'Windows Firewall with Advanced Security' management console - using their Private profiles. I've even tried as you suggested and created inbound and outbound rules for port 135. I still get 'Access is denied (5)' when attemptingtoview the remote event logs, and manage remote services. I've even restarted bothmachines after making firewall changes, and explicitly started the RPC Locater service...no joy. I'm using the Windows firewall only. I'll disableanti-virus services next. Ofcourse, I can use the RDC client to do what I need, but not being able to remote manage/view event logs, and services ina Vista-to-Vista network using the computer management console is an annoyance. I'll continue searching for a solution.

Please temporary disable Windows Firewall and check the issue. If it persists, lets check if the Remote Registry service is enabled on the Windows Vista computers. Please click Start, in the Start Search box type "services.msc" and press Enter. Find the Remote Registry service, double-click on it. If it is disabled, start it, and change the Start type to Automatic. If the issue is not resolved, please check related Registry permissions. Click Start, in the "Start Search" box type "regedit" and press Enter. Locate to the following branch. HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\SecurePipeServers\winreg Right-click on this branch, choose Permissions. Please give LOCAL SERVICE Full Control permission, click OK to quit. Then, expand Event Log, click on Allowed Paths. In the right pane, double-click the value Machine. Please make sure that the following line exists. System\CurrentControlSet\Services\Eventlog If it is not present, manually add. If the above steps do not resolve the issue, please let me know if the computers are in domain, or they are in the same workgroup. If they are in workgroup, please let me know if you have enabled Guest account on both Windows Vista computers, or you are using same username and password to access other computers. Additionally, please let me know if the file sharing works properly on Windows Vista computers. Also, please let me know if you could manage Event Log for the Windows Vista computers from the Windows XP computer. Hope it helps.

Hello,It's been a while. The registry keys you had me check were already set/available.All my computers :- remote registry service is set to start automatically and are running- are in the same workgroup- Guest account is disabled- have the same admin user account I use to administer themFile sharing on Vista works fine. I cannot access the Vista remote event logs from my XP Pro cbox. However, I can access the XP Pro remote event logsfrom the Vista boxes. I also disable the firewall on both Vista boxes...no joy.On one of my Vista boxes I noted this System event log:-----------------------------------------------------------------------------------------------------------------------------------EventID: 10016 The application-specific permission settings do not grant Remote Activation permission for the COM Server application with CLSID {03837521-098B-11D8-9414-505054503030} to the user vista-pc1\dwest SID (S-1-5-21-2820595455-2313549648-4144784090-1000) from address 192.168.1.101. This security permission can be modified using the Component Services administrative tool.-----------------------------------------------------------------------------------------------------------------------------------This was logged after turning off the firewall, and attemping to access the Vista remote event log from the other Vista box.I'm going to install 2 Vista VM's in Hyper-V to see if I can do this after a clean install. Please respond with other suggestions, and thanx for your attention.

Bump - we are having this problem as well, always have had since we started using Vista on our corporate network. Cannot connect using a third party tool that uses rpc either (Remote Task Manager) with the error "The network path was not found".We have firewall forced disable via GP on all machines.