| Home | Register | Members | Search | Links |
 |
| Thread Tools | Display Modes |
|
Guest
Posts: n/a
|
|
|
|
||
|
|
| |
|
Guest
Posts: n/a
|
a regular user should not logon DC. if for some reasons, you want them to do so, this may help, http://www.chicagotech.net/troubleshootingts.htm
"The local policy of this system does not permit you to logon interactively." Symptoms: When trying to connect to a W2K domain controller running Terminal Services with Application Server mode for user access, you as a TS user may receive "The local policy of this system does not permit you to logon interactively" message. You may not receive this message if you logon with a member of the following default groups: a.. Account Operators b.. Administrators c.. Backup Operators d.. Print Operators e.. Server Operators f.. Others based on services on the computer such as TsInternetUser Also, you will not receive this message when you logon member and stand-alone servers since they have the users group included in the "Log on Locally" user right. Resolutions:This issue occurs because the W2K domain controller running Terminal Services does not have the Users, Authenticated Users, or Everyone global group added to the Group Policy Object for the "Log on Locally" user right. "Log on Locally" is a required user right in Microsoft Windows NT 4.0, Terminal Server Edition and Windows 2000 Terminal Services. To modify the Group Policy Object for the domain controller, go to Administrative Tools>Domain Controller Security Policy>Security Settings>Local Policies>User Rights Assignment>Policy>Log on Locally>Add>Browse, click the appropriate group, and then click Add. After modifying the Group Policy, type secedit /refreshpolicy machine_policy /enforce at a command prompt, press ENTER, and then press ENTER. Don't send e-mail or reply to me except you need consulting services. Posting on MS newsgroup will benefit all readers and you may get more help. Bob Lin, MS-MVP, MCSE & CNE How to Setup Windows, Network, Remote Access on http://www.HowToNetworking.com Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net This posting is provided "AS IS" with no warranties. I recommend Brinkster for web hosting! "mado" <(E-Mail Removed)> wrote in message news  E83965D-05D0-4ECC-8150-(E-Mail Removed)...hay som times when one of my users try to log on the domain this error messages appear the local security policy doesn't permit you to logon interactively" so what is up abd what is the soluation? thank you |
|
|
|
|
|||
|
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| is there a way to change the local computer administrator password via group policy? Please help | El CiD | Windows Networking | 5 | 10-19-2007 02:18 AM |
| The local policy Allow Access to this computer from the network is | Carl | Windows Networking | 0 | 08-18-2005 01:11 AM |
| Domain Controller Security Policy | William Tyler | Windows Networking | 1 | 09-10-2004 04:21 PM |
| Suffix Search list reset by local policy. | Bob | Windows Networking | 0 | 07-12-2004 09:51 AM |
| The Local Policy of This System Does Not Permit You to Logon Interactively | Jorgelina E. Bernasconi | Windows Networking | 3 | 01-23-2004 02:48 PM |
Linear Mode
