Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 515
  • Last Modified:

Login with Local Administrator account resets the login prompt to local computer. Windows 2000

When logging into a system with the local administrator account we log into the computer itself and not the domain.  Now when the user logs in it presents the user in the logon box the local computer name rather then the domain they need to log in to. I want to be able to run a batch file or script to change it back to the domain because our users aren't the brightest in the world and call us up to login when they are logging in to the local computer rather than switching to the domain.

Does anyone know the registry keys that need to be changed?  Does anyone have a batch or script I could use to accomplish this?  Does anyone have a template I could use?  I know someone was doing this before but I forgot to ask him and I didn't catch his name.

Is there any other way around this without having to modify a GPO which is not an option in this case.  We are running Windows 2000 pro on all client systems.

Thanks ahead of time.
0
Shenook
Asked:
Shenook
  • 4
  • 3
  • 2
  • +2
3 Solutions
 
zmorvikCommented:
If I understand you correct, your admins login, perform their tasks, and then logout.  When the user returns, they are having difficulty understanding that they need to swith their logon to dropdown from the local computer back to your domain.

Something to try:

This is clipped from the instructions for using AutoAdminLogon.  Of course, you don't want to use AutoAdminLogon, so the only key we will create here is the DefaultDomainName.  

The full article can be viewed here:
http://support.microsoft.com/default.aspx?kbid=315231

Open registry editor and browse to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Winlogon

Created a new String Value called DefaultDomainName
Make the value your domain name.

Good luck!

0
 
dhoustonieCommented:
Are you using a remote connection to logon or are your support staff physically at the machine?
0
 
ShenookAuthor Commented:
We are physically at the machine.  Thanks for the reply dhoustonie.  Let me know if you know of any scripts.
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
dhoustonieCommented:
You have said that you don't want to change the GPO, is that the domain gpo, or the local group policies?

dave
0
 
dhoustonieCommented:
You could use the advice given before and create a reg file that would set the default domain to your domain name, so that when your support staff log off the user just types in their username and password and they are in, by logging in once as the admin or adding to a script it would be a permanent fixture until the registry was deleted.

Save this as a .reg file, just change YourDomain to your domain name:

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Winlogon\DefaulDomainName] @="YourDomain"

 
0
 
Jared LukerCommented:
You can make a .vbs file called fixdomain.vbs (or whatever you want to call it).  Copy the following script into a text file and name it that name.

You can call it from your login or startup scripts and it will make the change for you.
______________________________________________________________________

Dim WshShell
Dim Domain

Domain = "DomainName"

Set WshShell = WScript.CreateObject("WScript.Shell")

WshShell.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\DefaulDomainName",Domain,"REG_SZ"

______________________________________________________________________

Jared

ps the path has "Windows NT" in it... not "WindowsNT"
0
 
zmorvikCommented:
I forgot about the script part in my answer.  Sorry about that.  I agree with dhoustonie on the registry import script.

jared_luker too is correct.  The key is Windows NT.  Weird because I copied that directly from my exported registry script.

I would highly recommend you test this on a non-production PC just to be sure that it doesn't have any adverse effects.

Create the key I mentioned in the original reply.  Use registry editor and export the following key
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

This file will be whatever you named the file .reg

Edit this file with notepad and remove everything except the following:
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"DefaultDomainName" = "<your-domain-name>"

Now save this file.  Copy this modified .reg file to the NETLOGON share on your domain controller(s).  In NT 4.0, you will need to copy it to %systemroot%\system32\repl\import\scripts

Now, in a logon script, add the following
regedit /s \\<domain-controller-name\netlogon\yourfile.reg

This will import these settings into the local registry.  

Unfortunately, I believe an administrator on that machine or the domain is going to have to run this batch file because a Domain User or a user who is only part of the local Users group will likely not be allowed to create this registry entry.  So, maybe your support personnel either carry a floppy, USB key, or network location for the batch script, etc that they run on each workstation they visit from now on.


Best Wishes
0
 
ShenookAuthor Commented:
GPO reply...
Both as we have a different contracting company taking care of the GPO's for particular reasons.  So no GPO changes can be made at this time.
0
 
ShenookAuthor Commented:
I will get this tested tomorrow morning sometimes and distribute the points accordingly.  I really appreciate all the help.  I'll make sure I get back on to close out this thread as the solution(s) provided probably will work.  Thanks again I'll post again tomorrow.
0
 
Tim HolmanCommented:
How about a script that deletes all local user (non-admin) accounts ?
0
 
ShenookAuthor Commented:
I have distributed the points and wanted to thank all 3 of you as you all added comments that were correct.  Thanks again for your help.  I hope I see you all in another thread soon.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 4
  • 3
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now