WMSVC (Web Management Service) Failing to start with "Access Denied" or error code '5' on WS2019
Published Jul 23 2019 02:20 PM 9,851 Views
Microsoft

If that "Block untrusted fonts" policy has been enabled, then there's a known issue that denies the Web Management Service from starting. This is only on Windows Server 2019 as of now.

 

The issue has been fixed in Windows Server v1903 (the semi-annual channel) and will not occur on that or newer OSes. It also does not occur on Windows Server 2016.

 

If the policy has not been enabled, then this post does not apply to your scenario.

 

The fix for this issue has been backported to WS2019 via KB 5011551 (h/t @Dave_Dietz!)

 

Side notes:

That policy has not been recommended since 2017:
https://blogs.technet.microsoft.com/secguide/2017/06/15/dropping-the-untrusted-font-blocking-setting...

https://techcommunity.microsoft.com/t5/microsoft-security-baselines/dropping-the-quot-untrusted-font...

 

With the policy enabled, there will be nothing logged in Event Viewer (see the policy for logging info) to indicate WMSVC.exe was blocked from starting.

 

Policy:

https://docs.microsoft.com/en-us/windows/security/threat-protection/block-untrusted-fonts-in-enterpr...

2 Comments
Co-Authors
Version history
Last update:
‎Jun 15 2022 04:17 PM
Updated by: