Re: Cant logon to local machine (this computer) as administrator
From: James W. Long (JamesLong_at_wowway.com)
Date: 07/12/04
- Next message: KVFLTCH: "Best Practice Guide-services!"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: Local policy logon interactively on remote laptop"
- In reply to: anonymous_at_discussions.microsoft.com: "Cant logon to local machine (this computer) as administrator"
- Next in thread: Steven L Umbach: "Re: Cant logon to local machine (this computer) as administrator"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 12 Jul 2004 15:54:22 -0400
Dear Anonymous:
and Steven, If you're reading this, I miswrote your reply, its article
285793 my comment.is about.
Thank you for the references to those articles, they helped me to solve the
problem,
in particular 276580 and 285793.
Yes, there was a difference between local setting and effective setting.
I had to fix it at the domain level by taking out my stipulated "log on
locally" settings there.
Then I could get in to the local machine as administrator. :-).
Regarding 285793:
It would be nice If the domain controller could see the local accounts which
reside on client machines and be able to work with those as well.
For instance I would have liked to add HAL9000\Administrator
to "Log on Locally" and have it apply to HAL9000.
This was _almost possible in KB article 285793, BUT
"HAL9000\Administrator" is not available in the directory from the DC,
which is jewelconsulting.org, nor is it available in the full directory.
Once having removed my stipulated accounts from the domain level,
it worked.
it works now, and thank you for that great information!
I later cleaned up the mess by stipulating in each client.
James W. Long.
<anonymous@discussions.microsoft.com> wrote in message
news:2b47a01c46825$10da5800$a401280a@phx.gbl...
> Sounds like the Security Policy setting "Deny Logon
> Locally" has a group in there that doesnt belong. This KB
> article describes your error exactly KB276580. If not take
> a look at these KB 285793 and 826903
>
> >-----Original Message-----
> >
> > Hi all,
> >
> > I can log onto the domain account on my clients but I
> > can not log into thier local accounts anymore.
> >
> > I really need this back in case they fail or something.
> >
> > For instance, my domain is called jewelconsulting.org
> > and I run a Win2000 Adv Server Domain Controller
> > that is authorative for the jewelconsulting.org domain.
> >
> > If I go over to my client machine named hal9000,
> > I can logon as administrator to jewelconsulting fine.
> >
> > But I cannot logon to HAL9000 (this machine)
> > as administrator at all.
> >
> > I get this error message and I dont know how to
> > fix it, some help would be greatly appreciated.
> >
> > " The policy of this system does not permit you
> > to logon interactively."
> >
> > How do I fix this and where? on the DC or
> > on the local machine?
> >
> > Thank you in advance,
> > James W. Long.
> >
> >
> >
> >
> >
> >.
> >
- Next message: KVFLTCH: "Best Practice Guide-services!"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: Local policy logon interactively on remote laptop"
- In reply to: anonymous_at_discussions.microsoft.com: "Cant logon to local machine (this computer) as administrator"
- Next in thread: Steven L Umbach: "Re: Cant logon to local machine (this computer) as administrator"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
