Last User Logon and Windows 2000
Posted on 2000-02-24
Ayone notice that clearing the last user logon policy in Windows 2000 does not work. I do not have AD or GPO's, I am using the old NT4.0 policies.
The following is from 2000 documentation from Microsoft showing the registry entry that needs to be changed. The policy will change the value from 1 to 0 but this does not clear the username on the logon screen. All my old NT4.0 workstations and servers work fine.
Data type Range Default value
REG_SZ or REG_DWORD 0 | 1 (decimal only) 0
Determines whether a user name appears in the Log On to Windows dialog box.
By default, Windows 2000 displays the user name of the last user who logged on successfully (as stored in the value of DefaultUserName) in the Log On to Windows dialog box. If the value of this entry is 1, the User name box in the Log On to Windows dialog box is blank.
0 The name of the last user who logged on successfully is displayed in the Log On to Windows dialog box. This setting is designed to make logging on faster and easier.
1 The User name field in the Log On to Windows dialog box is blank. This setting is designed to enhance the security of the system by not displaying a valid user name.
This entry can be overriden by a Group Policy setting in Windows 2000. When the Do not display last user name in logon screen policy (Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options) is defined, this entry is ignored.