Not permitted to logon interactively.

Posted on 2006-04-06
Last Modified: 2013-12-04
This is a problem that turns up periodically.  I have it right now.  I have one Windows XP machine which does not allow users to logon interactively (except the administrator).  The machine is on a Windows 2K server network. They are not in the deny logon locally group and, on the Domain Controller, they are in the Allow local logon group.  I have used the Windows resource kit application NTrights to specifically allow the SeInteractiveLogonRight for this user.  I get a message that this right has been set successfully.  The machine allows the user to logon once.  Then it will not allow the user to logon again.  

I have seen Windows 2K workstations do this repeatedly, but never an XP workstation.  I just don't seem to be able to find anything on this.  

I read something about an interactive logon group in another post, but can't find that group anywhere.  

Any help would be appreciated.  
Question by:snurd3
    LVL 48

    Accepted Solution

    Hi snurd3,

    you dont need to be looking at policies on the DC you need to look locally

    check the seem logon policy on the local machine   gpedit.msc

    LVL 13

    Expert Comment

    by:Kini pradeep
    you need to check whether the same user gets the message on the the Xp w/s.
    you could run the gpresult for the user.
    usually the message that " the local policy of the system prevents you from logging on interactively" could very well mean that the policy is either getting applied somewhere or is getting overwritten, on xp you could run the RSOP.msc to find the resultant set of policies.
    the policy get applied in this order
    since the user logs in to the domain check the DC policy as well.check whether there are any policies affecting this user.


    Featured Post

    Better Security Awareness With Threat Intelligence

    See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

    Join & Write a Comment

    Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
    Many people tend to confuse the function of a virus with the one of adware, this misunderstanding of the basic of what each software is and how it operates causes users and organizations to take the wrong security measures that would protect them ag…
    Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
    Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now