Account lockout effects local logon to machine
From: Camilla (camilla_ransom@hotmail.com)
Date: 10/23/02
- Next message: A. Tolga KILINĒ: "ADSI script for security"
- Previous message: Robert Coupee: "Windows 2000 permissions keep disappearing"
- Next in thread: rod: "Account lockout effects local logon to machine"
- Reply: rod: "Account lockout effects local logon to machine"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Camilla" <camilla_ransom@hotmail.com> Date: Wed, 23 Oct 2002 04:20:03 -0700
We support a number of remote users who dial in over VPN
and hardly ever log on physically to the domain (twice
yearly if that).
The problem we are having is that if their domain account
expires and requires a password change which is set to
every 30 days, (User Must Change Password At Next Logon)
they cannot even log on locally to their machines using
cached information (as they could forever and a day with
NT4). I guess this is Windows 2000 being 'intelligent' and
knowing when their account is going expire and not
allowing them to log on locally. This, I suppose, is for
security.
My question is this, how can we stop this from happening,
is there a registry 'hack' to prevent it ? We have spent
numerous hours on the phone with them having them logging
on as local Administrator, creating themselves a local
account and using that instead.
If there isn't a 'hack'/ fix, anyone have any suggestions
on how we can support them properly ??
Many thanks.
- Next message: A. Tolga KILINĒ: "ADSI script for security"
- Previous message: Robert Coupee: "Windows 2000 permissions keep disappearing"
- Next in thread: rod: "Account lockout effects local logon to machine"
- Reply: rod: "Account lockout effects local logon to machine"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
