The Allow local activation security check exemptions machine setting should be configured correctly. Allows you to specify that local computer administrators can supplement the "Define Activation Security Check exemptions" list. If you enable this policy setting, and DCOM does not find an explicit entry for a DCOM server application id (appid) in the "Define Activation Security Check exemptions" policy (if enabled), DCOM will look for an entry in the locally configured list. If you disable this policy setting, DCOM will not look in the locally configured DCOM activation security check exemption list. If you do not configure this policy setting, DCOM will only look in the locally configured exemption list if the "Define Activation Security Check exemptions" policy is not configured. Fix: (1) GPO: Computer Configuration\Administrative Templates\System\Distributed COM\Application Compatibility Settings\Allow local activation security check exemptions (2) KEY: HKLM\Software\Policies\Microsoft\Windows NT\DCOM\AppCompat\AllowLocalActivationSecurityCheckExemptionList