Win Server 2003: The local policy of this system does not permit you to logon interac - Techist - Tech Forum

Go Back   Techist - Tech Forum > Computer Software > Microsoft Windows and Software
Click Here to Login
Closed Thread
 
Thread Tools Display Modes
 
Old 12-26-2005, 01:19 AM   #1 (permalink)
True Techie
 
Join Date: Jan 2005
Posts: 158
Default Win Server 2003: The local policy of this system does not permit you to logon interac

Hey all,
I am having this issue trying to TS into my server and I get this message: The local policy of this system does not permit you to logon interactively.

I have seached google and everyone says to edit the log on locally policy, which I have done under Default Domain Controller policy. I added admins to the remote desktop users group, I have tried logging on as a user. Same thing. I dont know if their is any other GP to look at. I have checked the denied log on locally as well but thats clear.

Any suggestions?
__________________

dexta182 is offline  
Old 12-26-2005, 08:05 AM   #2 (permalink)
Master Techie
 
Join Date: Feb 2004
Posts: 2,172
Send a message via AIM to Win2kpatcher
Default

Who are you trying to logon as? Is this happening only with TS or at the server as well?
__________________

Win2kpatcher is offline  
Old 12-26-2005, 08:24 AM   #3 (permalink)
True Techie
 
Join Date: Jan 2005
Posts: 158
Default

When I use Remote Desktop connecting to the server I can log on as Admin, but when logging on as a user I cant. I have added the user in the RDC group as well as adding the users group. But same thing.
dexta182 is offline  
Old 12-27-2005, 02:34 AM   #4 (permalink)
Ultra Techie
 
Join Date: Jul 2005
Posts: 530
Send a message via AIM to TheHeadFL
Default

look in domain controller security policy

look for the policy that says "allow user to logon interactively" and add your RDC group there.
__________________
Desktop machine: 2 x Opteron 246, Asus K8N-DL, 2GB PC3200 ECC Reg., XFX GeForce 6600GT, 74gb WD Raptor, 2 x 19\" LCDs, Windows XP x64
Server machine: Intel P4 3.0GHz 2MB EM64T, ECS i865pe, 1GB PC3200, 36gb WD Raptor, Windows Server 2003
Laptop: Dell Inspiron 9100 (Intel P4 3.2GHz 1MB Prescott, i865pe, 512MB PC3200, Mobility Radeon 9700, DVD+R/DL Burner), Windows XP
Linux: P3 450Mhz, 386MB ram, Slackware 10.1 (Running mySQL/Apache)
TheHeadFL is offline  
Old 12-27-2005, 02:47 AM   #5 (permalink)
True Techie
 
Join Date: Jan 2005
Posts: 158
Default

I dont think their is a policy that says that. I have added thr Remote desktop user group to "allow logon local" and "allow logon through TS" under Local policy-user rights assignment.
__________________
I\'m not your Google Butler!
dexta182 is offline  
Old 12-27-2005, 03:22 AM   #6 (permalink)
Ultra Techie
 
Join Date: Jul 2005
Posts: 530
Send a message via AIM to TheHeadFL
Default

look in domain security policy then.

there is one in there somewhere. I had this problem a few years back on Win2K. Its always a problem with permissions and such.

Theres several permissions... you need to add them to the actual RDP connection in terminal services manager as well as added to the domain/domain controller security policy.

By default, regular user accounts cannot log on interactively to a domain controller, only domain admins.

Keep rooting around, its a policy in there somewhere.
__________________
Desktop machine: 2 x Opteron 246, Asus K8N-DL, 2GB PC3200 ECC Reg., XFX GeForce 6600GT, 74gb WD Raptor, 2 x 19\" LCDs, Windows XP x64
Server machine: Intel P4 3.0GHz 2MB EM64T, ECS i865pe, 1GB PC3200, 36gb WD Raptor, Windows Server 2003
Laptop: Dell Inspiron 9100 (Intel P4 3.2GHz 1MB Prescott, i865pe, 512MB PC3200, Mobility Radeon 9700, DVD+R/DL Burner), Windows XP
Linux: P3 450Mhz, 386MB ram, Slackware 10.1 (Running mySQL/Apache)
TheHeadFL is offline  
Old 12-27-2005, 03:38 AM   #7 (permalink)
True Techie
 
Join Date: Jan 2005
Posts: 158
Default

i have looked but nothing. Windows 2000 is diff to 2003 as remote desktop is newer and the policys are set diff. In windows 2000 you needed to add the user into allow logon local, but in 2003 all you should need to do it add it into the allow login through TS. This is what i have learned. Theroy is all ways easier then pracitical. It sucks. you think yeh thats straight foward but nope.
__________________

__________________
I\'m not your Google Butler!
dexta182 is offline  
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off




Copyright 2002- Social Knowledge, LLC All Rights Reserved.

All times are GMT -5. The time now is 12:10 PM.


Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.