Logon Locally Windows 2000
Posted on 2004-03-25
We have a lot of old pool laptops that have been upgraded to windows 2000. They do not have network cards or modems/cables. We currently have a situation where people keep forgetting they need to have the laptop put on the network to cache their profile to allow them to log on to it whilst at home.
While we could enable the guest logon this is very insecure. We have also considered creating a local policy (on each laptop) with a generic password. As these laptops never go on the network there is no way of changing the password for this generic account on the laptop so raises a security risk when people leave which is potentially often. How do you all do this? Surely anyone with pool home laptops must have this problem.
I have a couple of off the wall ideas but I don't think there is anything out there that does it, please tell me if anyone know different.
1. Have a policy on a floppy disk that has a user account enabled. Possibly with an expirey password account of 3 attempts.
2. Have a security token (we do use these for dialling in) that could somehow be authenticated locally.
As I said they are off the wall suggestions but maybe someone has an answer pleeeeeease.