[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


Need to regain access to Win2k server when bad security policy is in place.

Posted on 2004-11-04
Medium Priority
Last Modified: 2010-04-14
Here's the problem....  We are creating a ghost image for a win2k server that was joined to active driectory.  We disjoined the server from the domain to run sys prep before creating the image.  There was a security policy in place that doesn't let you log into the machine once disjoined from the domain.  So at this point we can not log into the server.

Is there a way to get into the machine at this state?  Magic boot disk or something along those lines?

Any help would be great.

If answers are sent via e-mail please CC: daniel_kunzman@acordia.com and matthew_beard@acordia.com
Question by:westonp
  • 2
  • 2

Accepted Solution

eth777 earned 2000 total points
ID: 12497958
use a client that is in a workgroup, not a domain.  
Start - Run - type mmc, and add a new snapin for group policy.  click browse, then the computers tab, select connect to another computer, and type in your problem computer.
 it will ask for credentials, and you can go in and change the settings.
the client you connect from has to be in a workgroup though.

Author Comment

ID: 12498327
When it asks for the credentials we get an error.  Access is denied.  Basically the same thing as the normal login screen.  Any thoughts?

Expert Comment

ID: 12498428
are you logging in as Domain\username

Expert Comment

ID: 12499203
I don't suppose you could easily add this offending server back into the domain (like it's still sitting in the rack)?  If so, you could then you could remove the offending policies I imagine.  

Another thought I had is that if you could boot to command prompt, you can try resetting the local security policy:


However, IT's A SERVER.  I get real antsy telling people what to delete off of their servers...


Author Comment

ID: 13145346
We ended up rebuilding the machine.  With the security policies in place here there wasn’t much we could do.  

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Most folks would know the basics of how Dropbox works, so that’s not the purpose of this article. Security is what it’s all about, so here I’ll share how I choose to secure my Dropbox Account and the Data it contains.
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month18 days, 21 hours left to enroll

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question