Re: Local policy does not permit you to logon interactively
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 01/29/05
- Next message: ZLorca: "Can NLB mix 2000 and 2003 Servers?"
- Previous message: Steven L Umbach: "Re: \\computername error: The target account name is incorrect."
- In reply to: Lesa H.: "Local policy does not permit you to logon interactively"
- Next in thread: Rebecca Chen [MSFT]: "RE: Local policy does not permit you to logon interactively"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 28 Jan 2005 19:00:48 -0600
Open Domain Security Policy on the domain controller and go to security
settings/local policies/user rights. Check the two user rights for logon
locally and deny logon locally. These are usually undefined but someone may
have modified them and if they did the domain settings will override local
settings. If the are undefined you could try setting logon locally to
include users and administrators and for deny logon locally add just the
guest account. Then run secedit /refreshpolicy machine_policy /enforce on
the domain controller and reboot the domain workstation. Another possibility
is a startup script is applying a security template via secedit during
startup as a domain computer. If you are finally able to logon, I would open
Local Security policy on that workstation and check those two user rights
for local and effective settings. --- Steve
"Lesa H." <itsplesa@news.postalias> wrote in message
news:OGPqjSYBFHA.2584@TK2MSFTNGP09.phx.gbl...
> HELP! I've never had this happen before. I had a Windows 2000 Workstation
> that was freshly loaded and working great. The domain controller is a
> Windows 2000 server and I wasn't the person who configured it initially. I
> configured the network settings on the workstation then joined the system
> to
> the domain. Everything looked fine, but after I rebooted the system I
> couldn't get in with ANY user account. Not the domain administrator
> account,
> not even the local administrator account (which had been working before
> joining the domain). I tried booting into safe mode and safe mode with
> command prompt, but in both cases the login attempt produced the same
> results (Local policy of the system does not allow you to logon
> interactively). I REALLY don't want to reload this system and I need to
> find
> out what caused the problem before I join any other systems to this
> domain.
>
> Is there any way to fix the problem without a reload?
>
> Thanks!
>
> Lesa H.
>
>
- Next message: ZLorca: "Can NLB mix 2000 and 2003 Servers?"
- Previous message: Steven L Umbach: "Re: \\computername error: The target account name is incorrect."
- In reply to: Lesa H.: "Local policy does not permit you to logon interactively"
- Next in thread: Rebecca Chen [MSFT]: "RE: Local policy does not permit you to logon interactively"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
