local policy of this system error

[JB]

Archived from groups: microsoft.public.win2000.group_policy (More info?)

I am getting the error "local policy of this system does not allow you to
log on interactively" The user is only a domain user and we are trying to
log onto a domain controller. How can I enable this user to log into the dc
without giving it admin rights?

 

[Guest]

Archived from groups: microsoft.public.win2000.group_policy (More info?)

By default regular users are not allowed to logon to a domain controller. If you
really want to let him, go to Domain Controller Security Policy/security
settings/local policies/user rights and add his account or make a group for him and
add that to "log on locally" user right. --- Steve


"jb" <jasonbourque@kerzner.com> wrote in message
news:uNSrZvyTEHA.644@tk2msftngp13.phx.gbl...
> I am getting the error "local policy of this system does not allow you to
> log on interactively" The user is only a domain user and we are trying to
> log onto a domain controller. How can I enable this user to log into the dc
> without giving it admin rights?
>
>

 

[JB]

Archived from groups: microsoft.public.win2000.group_policy (More info?)

We set that through group policy and verified policy processing. Still
working. Any other ideas?
"Steven L Umbach" <n9rou@nospam-comcast.net> wrote in message
news:jY4yc.1547$zz.1046@attbi_s04...
> By default regular users are not allowed to logon to a domain controller.
> If you
> really want to let him, go to Domain Controller Security Policy/security
> settings/local policies/user rights and add his account or make a group
> for him and
> add that to "log on locally" user right. --- Steve
>
>
> "jb" <jasonbourque@kerzner.com> wrote in message
> news:uNSrZvyTEHA.644@tk2msftngp13.phx.gbl...
>> I am getting the error "local policy of this system does not allow you to
>> log on interactively" The user is only a domain user and we are trying
>> to
>> log onto a domain controller. How can I enable this user to log into the
>> dc
>> without giving it admin rights?
>>
>>
>
>

 

[Guest]

Archived from groups: microsoft.public.win2000.group_policy (More info?)

Did you do it at the Domain Controller Security level? It will not work in local
policy or domain policy since domain controller policy will override it. If you look
at "effective" settings in Local Security Policy on the domain controller, that will
tell you if the policy has propagated or not. Gpresult will show what policies are
applying to a computer and last time the policy was applied. -- Steve


"jb" <jasonbourque@kerzner.com> wrote in message
news:u$biHl8TEHA.2908@TK2MSFTNGP10.phx.gbl...
> We set that through group policy and verified policy processing. Still
> working. Any other ideas?
> "Steven L Umbach" <n9rou@nospam-comcast.net> wrote in message
> news:jY4yc.1547$zz.1046@attbi_s04...
> > By default regular users are not allowed to logon to a domain controller.
> > If you
> > really want to let him, go to Domain Controller Security Policy/security
> > settings/local policies/user rights and add his account or make a group
> > for him and
> > add that to "log on locally" user right. --- Steve
> >
> >
> > "jb" <jasonbourque@kerzner.com> wrote in message
> > news:uNSrZvyTEHA.644@tk2msftngp13.phx.gbl...
> >> I am getting the error "local policy of this system does not allow you to
> >> log on interactively" The user is only a domain user and we are trying
> >> to
> >> log onto a domain controller. How can I enable this user to log into the
> >> dc
> >> without giving it admin rights?
> >>
> >>
> >
> >
>
>