Hello,
We got a general issue since few weeks from now, we really can't understand what's about ;
As local administrator or domain administrator, on WS2016 & 2012R2 (we do not have 2019 to try), we can't kill / end processes which belongs to other users, we got an "Access denied" everytime. Other thing we can see is that the process owner is not displayed in the task manager or process hacker. What we tried:
Assume that i have a running notepad.exe on some interactive session (user is admin or not, doesn't matter)
(obvious) running taskmgr as admin, running processhacker as admin : access denied
taskkill /f /pid xxxx : access denied
wmic process where name="notepad.exe" delete : access denied
process hacker : we tried to gave ourselves the permissions on affected process: access denied
tried to uninstall any antivirus product, same thing
tried without any policies (group/local) applied on computer, same thing
mined the whole internet to get possible fixes, no chances :(
apply latest patches from Microsoft (usually critical & security only are automatically applied), build number is told below
reboot, reboot, reboot, reboot, etc.
At the time i'm running out of ideas, it looks like that the problem came with some update, but i don't know when.
Here is the build number of a WS2016 affected : 14393.4583, latest critical & security patches applied.
Are we the ones and only which got that issue ?
Thanks in advance,
Arnaud