Re: Effective Setting Greyed Out and Cannot Invoke Settings in 'Log on locally'
From: Zack Schneeberger (schneebie1_at_hotmail.com)
Date: 09/18/04
- Next message: Andrew Mitchell: "Re: "Act as part of the operating system""
- Previous message: Richard: "Re: Log on as a service - How to give this right to a user"
- In reply to: Steven L Umbach: "Re: Effective Setting Greyed Out and Cannot Invoke Settings in 'Log on locally'"
- Next in thread: Steven L Umbach: "Re: Effective Setting Greyed Out and Cannot Invoke Settings in 'Log on locally'"
- Reply: Steven L Umbach: "Re: Effective Setting Greyed Out and Cannot Invoke Settings in 'Log on locally'"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 18 Sep 2004 05:56:47 -0700
Thanks for the fast reply Steve. It is not a DC so I am guessing that
it would not be configured in the Domain Controller Security Policy
but rather the 'Default Domain Policy.' I checked there here is what
I found:
- Administrator' is the only group given permission in Allow Local
Logon
- There is nothing is the 'Deny Local Logon' attribute
So since nothing is being denied I should still be able to add users
in my 'Local Security Policy' right? But I am not able to. I have no
idea why.
Zack
"Steven L Umbach" <n9rou@n0-spam-for-me-comcast.net> wrote in message news:<uKK2d.209792$Fg5.22953@attbi_s53>...
> If this is a domain controller it has to be configured in Domain Controller Security
> Policy. You can also use the gpresult support tool on a domain computer to see what
> "computer" configuration GPO's are applied to that computer [not user]. A GPO from
> anywhere other than local could have that policy enabled for computer
> onfiguration. --- Steve
>
>
> "Zack Schneeberger" <schneebie1@hotmail.com> wrote in message
> news:a2aa04c0.0409171054.33b7b5f2@posting.google.com...
> >I have spent 5 hours trying to figure out this problem. We have a
> > server that is part of the Domain and is running Windows 2000 Server.
> > I am trying to modify the 'Log on locally' policy setting.
> >
> > After I click on 'Log on locally', the 'Effective Policy Setting' for
> > the groups that I want to log on locally is greyed out and unchecked.
> > So that leads me to the conclusion that a Domain Level Policy is being
> > pushed down right?! Well wrong! I have scanned 'Domain Security
> > Policy' and the 'Default Domain Policy' and there is no reference to
> > 'Deny Local Logon' to any group which is maybe why the 'Effective
> > Policy Setting' is greyed out and unchecked for certain groups in the
> > 'Log on locally' policy setting.
> >
> > Why is the 'Effective Policy Setting' greyed out and unchecked for
> > groups in my 'Log on locally' policy setting? It apears that that is
> > nothing denying their existance locally.
> >
> > Thanks in Advance,
> > Zack
- Next message: Andrew Mitchell: "Re: "Act as part of the operating system""
- Previous message: Richard: "Re: Log on as a service - How to give this right to a user"
- In reply to: Steven L Umbach: "Re: Effective Setting Greyed Out and Cannot Invoke Settings in 'Log on locally'"
- Next in thread: Steven L Umbach: "Re: Effective Setting Greyed Out and Cannot Invoke Settings in 'Log on locally'"
- Reply: Steven L Umbach: "Re: Effective Setting Greyed Out and Cannot Invoke Settings in 'Log on locally'"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
