W2K domain, W2K Pro clients. Must require local account for logon
Posted on 2003-03-31
We're currently running a W2K Advanced Server. We want our users to log into this domain from ctrl-alt-dlt on their clients. Our client machines are running W2K Professional. On each client machine (roughly 30) we have set up the accounts, around 4-5 per, for the users that are supposed to be able to access that machine. Those users work fine. The problem we've run into is that ANY user with an account on the W2K AS is capable of logging into those machines, regardless of whether they actually have a local account. Obviously this is a Bad Thing(tm). There has to be a security setting somewhere to require a local account in order to access the machine. Can anyone point me in the right direction?