Hi there, hoping to get some help on some printer issues on our server... Here are the symptoms and some information from troubleshooting I've been doing.

1. Last saturday for no apparent reason, MOST users are unable to see any of the printers under Devices and Printers, and are unable to start the Add Printer wizard... they get the "Windows cant open add printer. Access is Denied." This only applies when logging onto the server, either directly or through remote desktop... behavior is normal on everyone's individual workstations.

2. When I say "most users", I am not seeing any patterns.

for example, these users can still see their printers and start the app printer wizard. 

COMPNAME\Administrator (Computer administrator), DOMAINNAME\POINTOFSALE7 (domain user), DOMAINNAME\SUPERVISOR (domain administrator and computer administrator)

However, these users cannot:

COMPNAME\Testuser (computer user), DOMAINNAME\POINTOFSALE2 (domain user), DOMAINNAME\LINDA (domain administrator and computer administrator).

In other words, the status as a computer/domain administrator or user, or as a local or domain user has 0 effect. We only have "users" and "administrators", so there's no special permissions granted to any individual users or groups (that I'm aware of at least).

3. When I'm logged on to a user that can't see the printers or run the add printer wizard, I can run an elevated cmd with the command "rundll32 printui.dll,PrintUIEntry /il" This command DOES successfully start the add printer wizard. Interestingly, I can enter DOMAINNAME\LINDA's credentials to start the elevated CMD, and the command will run successfully. But DOMAINNAME\LINDA is unable to start the wizard logged on as herself. I can log in as DOMAINNAME\LINDA and start a normal cmd... but the command will yeild the same "access denied" error. I need to elevate it to run as an administrator for it to run successfully. Of course, when I'm logged in as DOMAINNAME\LINDA , no password is required to elevate the CMD, I just need to press OK.

4. One of the differences I noticed between the accounts that could still see the printers and start the wizard is that they didn't need to manually elevate many operations... for example, the administrator DOMAINNAME\LINDA has to elevate her CMD to run the rundll32 printui.dll,PrintUIEntry /il DOMAINNAME\SUPERVISOR does not. Similarly, accessing C:Windows\System32\Spool\PRINTERS requires elevation for DOMAINNAME\LINDA to access, but not for DOMAINNAME\SUPERVISOR. I suspect that there are a variety of files/folders that require elevation for Linda, and that may be why linda (and most other users) can't start the wizard or see the printers.

5. Yes, the spooler service has been started and re-started.

6. Yes, we've restarted the server

7. Copying tne of the users that can still see the printers and start the wizard to create a new user has no effect - the new user is incapable of seeing printers or starting the wizard. This applies both to domain and local users.

 8. The only patterns I've been able to identify in distinguishing why one user has the problem while the other doesn't is the likelyhood that the account was logged on at the time the change happened. Each of the accounts that I mentioned can still access their printers and start the wizard are almost always logged in (except for COMPNAME\Administrator). All of the other ones log off pretty reliably at night, so were likely logged off at the time when whatever changes took effect. The server has been restarted since then, and these accounts still have access. New accounts do not have access.

 9. I did not try the hotfix found here http://support.microsoft.com/kb/981070 as the error it specified is not the same one I get. I get the access denied error, not the "Operation could not be completed (error 0x0000007e)." error

Thanks for any help you can provide.

Jeff

Hi,

One of customer I support, they told me that they are deny all NTLM traffic on their network. They were asking me how this will impact the printing services, since we use IP instead of hostnames.

With printing they access the printer configuration via http using IP and also have the print server ports are configured via IP.

I am unsure how disabling NTLM will impact and environment that uses IP to access devices.

I did find this note https://technet.microsoft.com/en-us/library/jj865671(v=ws.10).aspx, but to me I am not sure how to understand the access bases on Ip section..

Are you able to bring some light?

I currently have multiple print servers (2012 and 2008 R2) servicing approximately 800 printers.  All of my current clients are Windows 7 (32/64 bit).  My question is how can I add the Windows 10 drivers so that they are automatically available for download when I client machine connects to one of my current printer queues?  When I attempt to add additional drivers I do not have any options in regards to Windows 10, only 32/64bit. 

Thanks!

Dear Server Expert,

we are currently using the Windows Server 2008 R2 as the print server. We deployed printer via the Group Policy. All our printers are actually network printer. some printers are shared for departments and some high management users have their own personal printer. All are networks printer.

My issue is:

is there any way from the Windows Server that we could configure to prevent users from printing to those personal printers. this situation may happen if the printer is being added accidentally to this specific users and users forget to select his/her default shared department network printer to send his jobs and end up send wrongly to the high management users printer.

Please advise.

Thanks

Hi all,

One of my colleagues has a weird problem when creating a PDF (working in terminal). This is the situation:

He receives a PDF via email, containing 3 pages. Out of those 3 pages, he wants to forward page number 2 to his client.
He opens the PDF, clicks on the print button, and selects page 2 (the page fits the format, so this is not the cause of the problem).

When clicking 'Print', the new PDF containing only page 2 gets created, but half of the content is missing!

I can see nothing out of the ordinary, altough i'm not really familiar with PDF printing.

Could it be that the PDF is corrupted in some way, or is it something else?

I could really use your help!

Thanks,
Vince

Appears only to affect 2012 R2, although I have no NON R2 to test against. 2008 R2 appears to be unaffected. (printers still show in print management after applying MS16-087 on 2008 R2).

This issue has been seen with other updates in the past, specifically KB2995388

On server 2012 R2, before applying MS16-087, I can view and manage all printers within print management interface. After applying update, ALL printers disappear from print management interface, even the stock default Microsoft XPS Ducument Writer. Removing the update MS16-087 and the printers return to the print management interface.

Servers are dedicated print servers that have been in service successfully with no issues for over 12 months. I can reproduce this at will by simply removing MS16-087- the printers all return as per normal. re-apply MS16-087 and printers disappear.

However, MS16-087 is a critical update, so need to find a way to have this update installed but still be able to manage my printers through print management interface.

Is there a known issue, is there an updated update, is there a workaround?

Any information would be helpful.

Thanks

I am having trouble displaying the Branch Office Print mode from the Get-Printer cmdlet 

We first set a printer to use Branch Office direct printing

Set-Printer -name sgbrcp1 -ComputerName <g class="gr_ gr_12 gr-alert gr_spell gr_disable_anim_appear ContextualSpelling ins-del multiReplace" data-gr-id="12" id="12">psrv</g> -RenderingMode BranchOffice

Then <g class="gr_ gr_42 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del multiReplace" data-gr-id="42" id="42">retreive</g> the status:

Get-Printer sgbrcp1 | ft name, renderingmode</g>

This returns:

name    RenderingMode
----    -------------
SGBRCP1              

The <g class="gr_ gr_53 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del multiReplace gr-progress" data-gr-id="53" id="53">Renderingmode</g> property is being returned as empty. 

For reasons I do not understand, Get-Printer returns <g class="gr_ gr_67 gr-alert gr_gramm gr_run_anim Grammar multiReplace" data-gr-id="67" id="67">a MSFT_Printer</g> object in the Root\StandardCimV2 namespace, vs a Win32_PrinterObject. It appears that the two object types are shadows of the other, although Win32_Printer is defined in the MSDN documentation whereas I can't find MSFT_Printer definition.

I know that the Rendering mode is not actually a property of the underlying MSFT_PrinterObject, but a reference to the instance properties:

$p.psbase.CimInstanceProperties['Renderingmode'] where $p is the MSFT_Printer instance for a printer).

If I look at that, I see:

So my question is: how can I set rendering mode so that is actually displays? And why isn't the value being returned from the Get-Printer Cmdlet?

Given that Get-Printer is failing, how else can I see that Branch Office printing is setup (preferably through automation)?

Thomas Lee <DoctorDNS@Gmail.Com>

I can't believe this is so difficult.  I find lots of tricks to install 32bit printer drivers on an EXISTING printer with 64bit drivers, on a 64bit server.

But I'm trying to install a printer for the first time on a 64bit 2008 server.  It won't let me add 32bit drivers.

And suggestions?

It had been a few months since my last windows update, so I updated my server.  Since then I get an splwow64.exe error whenever I launch any application that has printing.  I can no longer print to my usb attached printer.  It worked fine before, but then stopped.  I deinstalled and reinstalled the printer to no avail.  I'm running Windows 2012 server R2.

Here are the latest updates to the server.  Should I remove any of these to see if printing works again?

Security Update for Windows Server 2012 R2 (KB3169704)

Security Update for Windows Server 2012 R2 (KB3170377)

Windows Malicious Software Removal Tool for Windows 8, 8.1, 10 and Windows Server 2012, 2012 R2 x64 Edition - July 2016 (KB890830)

Cumulative Security Update for Internet Explorer 11 for Windows Server 2012 R2 (KB3170106)

Security Update for Windows Server 2012 R2 (KB3168965)

Security Update for Windows Server 2012 R2 (KB3172727)

Security Update for Windows Server 2012 R2 (KB3170455)

Update for Windows Server 2012 R2 (KB3173424)

Security Update for Microsoft .NET Framework 3.5 on Windows 8.1 and Windows Server 2012 R2 for x64 (KB3163247)

Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3115308)

Security Update for Microsoft .NET Framework 4.5.2 on Windows 8.1 and Windows Server 2012 R2 for x64 (KB3163291)

Security Update for Adobe Flash Player for Windows Server 2012 R2 (KB3174060)

Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3115309)

Thank you for your help.

I found this post http://social.technet.microsoft.com/Forums/en-US/windowsserver2008r2general/thread/45bf397a-73c0-4636-bd92-97028b56357d I can't respond or reply to it, as it's marked read-only.

I am also seeing this same problem, this is a brand new installtion of Windows Server 2008 R2 Enterprise x64. I don't know what the other peoples issues were, but I'm seeing the error in deleteing the spool file on users who are logging in from a trusted domain. Not really sure what the best way at the moment to deal with that is as it appears to be a cross-forest issue.

I could most likely assign a group from the trusted domain permissions to delete files in that folder, but it seems if they are able to create files in that folder, they should also be able to delete. Wouldn't they wind up in the Creator Owner group?

Several folks in my department are having difficulties printing to a Server 2012 R2 print server. The server error log shows the typical '372' event ID. However, after browsing several other threads related to the 372 event ID, I've found nothing on the secific error that I'm getting:

The document xxxxxxx, owned byxxxxxxx, failed to print on printer xxxxxxx. Try to print the document again, or restart the print spooler. 
Data type: RAW. Size of the spool file in bytes: 93985. Number of bytes printed: 4. Total number of pages in the document: 0. Number of pages printed: 0. Client computer: xxxxxxx. Win32 error code returned by the print processor: 2152796175.

Can anyone shed more light on this error? Much appreciated.

-Ryan

Hello,

We use a Server 2008 R2 Printer as a print server, and have deployed printers using it for the past several years.  Most of the printers are HP Printers, and about 10 Canon multifunction devices (industrial size copiers).  Until about July/August of 2016, this has worked great.  Around this time, we replaced a couple of our old copiers.  When we added the print drivers for the new ones, we discovered that all previously installed Canon drivers on client machines needed to be reinstalled.  Because they were pushed out through group policy, updating the driver manually was not enough... we had to remove the printer completely, then manually reinstall it because for some reason, the drivers would not reinstall through group policy either.  The problem with this is that users need administrative privileges to do this, and for a team of 5 people to do this on 500 computers... not ideal.  But we did it, because we could not figure out any other way to get the drivers installed.

Yesterday, we replaced two more copiers and the same thing happened.  Immediately after I added the new printer and driver to the print server, I started getting calls from users saying they couldn't print to their copier (which hadn't been changed in any way) and it was prompting them to reinstall the driver.  I have been researching a solution for this over the past 24 hours and have tried many different things that I have found, but none of them are working.  The two main things that I kept running into that were "marked as solution" were to try a universal driver package rather than the specific drivers for the model of the copier, and specific settings in Group Policy related to "Point and Print" settings for both Computer and User configuration.  The universal driver package made no difference, and I have tried every different possible combination of Point and Print settings I found in forums with no better results.  I also tried disabling the "Prevent users from installing printer drivers" and "Allow non-administrators to install drivers for these device setup classes" and added the printer and IEEE class GUIDs, also made no difference.  I have seen a few other posts where people using Canon copiers have described this exact same scenario, and have not seen a solution for it... any ideas out there?  Has anybody come across this with Canon devices, and if so have you been able to resolve it?  Any help would be greatly appreciated.

Greetings,

We have an EFI Fiery print driver that can't be silently deployed since a popup comes up. This is because it is not 'packaged' apparently.

Here's a screen shot of the column and then of the popup:

We're told this is after a new patch came up affecting the spooler.  https://technet.microsoft.com/library/security/MS16-087

This is a WHQL Driver and can be perused here:

https://drive.google.com/drive/folders/0B4fzTSUY9KasYmR1NjB2SjZmSms?usp=sharing

Could someone share what does it mean to have a driver 'packaged' or not and where to start to package it?

Thank you, and health and happiness in the new year :)

We have a Server 2008 SP2 x64 acting as Print server and today the Print spooler is  not able to start. It shows "Spooler Subsystem App stopped working and close". 

Event ID 1000 is logged with "Faulting application spoolsv.exe version 6.0.6002.18294 faulting module hpmdp5r1.dll" message.

Any help will be more than appreciated.

Thanks

myt

Windows Print Server  -  Windows 2012 R2

Workstation Client                - Windows 7 32bit /64bit

We are facing a problem in the client workstation where the mapped printers from the windows print server showing offline.

But the printers in the print server is showing online. This is happening to random users only. 

Also some pc even the shared printer showing online but the jobs are not transferring to the print server.

They need to restart the print spooler to solve this issue or they need to restart the PC to rectify this issue. Sometimes they need to start 2 or 3 times to bring the printer online.

How can we troubleshoot the issue.

I just finished doing the change over from a 2003 print server to a 2012 R2 print server. All print queues are setup with x86 and x64 type 3 print drivers.

I have a few print queues that are not working, I can map to the new printers and I can send a print job but the job never reaches the printer.

I have deleted the print queues and rebuilt them, used older drivers (and newer drivers) and still the same issue.

In the drivers I installed are not for 2012 R2 but for 2008 x86/ x64 (our workstations are 32 bit)

Below are some of the errors I get in the log, I have looked online and found no positive solution. How can I resolve this issue?

Microsoft-Windows-PrintService/Admin
Event ID 215
Installing printer driver Canon iR3530 UFR II failed, error code 0x0, HRESULT 0x80070705. See the event user data for context information.

Microsoft-Windows-PrintService/Admin
Event ID 370
The print spooler failed to regenerate the printer driver information for driver Canon iR3530 UFR II for environment Windows x64. Win32 system error code 1797 (0x705). This can occur after an operating system upgrade or because of data loss on the hard drive.

Microsoft-Windows-PrintService/Admin
Event ID 215
Installing printer driver Canon iR5055/iR5065 (FAX) failed, error code 0x0, HRESULT 0x80070705. See the event user data for context information.

Microsoft-Windows-PrintService/Admin
Event ID 370
The print spooler failed to regenerate the printer driver information for driver Canon iR3530 UFR II for environment Windows x64. Win32 system error code 1797 (0x705). This can occur after an operating system upgrade or because of data loss on the hard drive.

I have been reviewing the articles below and it does not seem to give me the answer I seek.

https://technet.microsoft.com/en-us/library/dd393228%28v=ws.10%29.aspx?f=255&MSPPError=-2147217396

Dear All

Is there is any way to achieve the above mentioned title. So, whether the access is remotely or from the MFP itself directly, all access to this SAMSUNG CLX-8385ND MFP will be through User ID & Password of MS Windows 2012 Active Directory only.

I appreciate the support on anticipation.

Best regards and wishes.

Hi,

I'm having an issue where I'm trying to kill the printisolationhost.exe due to buggy drivers after it has ran for a set amount of time.

I have set the PrintDriverIsolationTimeBeforeRecycle registry key as described in https://blogs.technet.microsoft.com/askperf/2009/10/08/windows-7-windows-server-2008-r2-print-driver-isolation/

Despite setting this DWORD the process still runs longer than the time limit.

Does this key have a maximum time value that can be set? Does this key actually forcefully kill the process after running for the defined time? (in my current case 3 hours).

I am running on Server 2008 R2.

Thanks,

-J

Server 2008 R2 standard SP1

All:

Is there a way to see who is connected to a print share? I don't necessarily need the username, I'll take the IP address at this point.  Anything would help!

Thanks!