Solved

How can I configure group policy to allow domain admins to unlock pcs without logging the user out?

Posted on 2006-11-30
6
1,046 Views
Last Modified: 2008-02-01
Hi all,

We're using Server 2003 on our domain controller and have a mix of XP and W2K workstations.  How can I configure group policy to allow domain admins to unlock pcs without logging the user out?  I'm assuming this is done through group policy, so please correct me if I'm wrong.

Thank you!
0
Comment
Question by:Burkl44
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 2

Accepted Solution

by:
LanBuddha earned 83 total points
ID: 18045985
I don't believe this can be done. Only one person can be logged on interactive to a workstation at a time.
0
 
LVL 7

Assisted Solution

by:killbrad
killbrad earned 83 total points
ID: 18046004
This is not possible.

If you were running XP OUTSIDE of a domain environment, enabling Fast User Switching does what you want..  
However, in a domain Fast User Switching can't be turned on.
0
 
LVL 16

Assisted Solution

by:AdamRobinson
AdamRobinson earned 84 total points
ID: 18046021
As said above, in the default Windows Lock, you cannot unlock the user's session without terminating said session.

There are third party programs you could purchase and install that will allow you to do this through their lock (lock my pc, etc.)

Or you could remove locking all together.
0
U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

 

Author Comment

by:Burkl44
ID: 18046031
I did this at my last company so maybe I'm not explaining it well.  I just want to be able to unlock a locked machine so that the user is still logged on.  Basically overriding the lock.  You hit ctrl-alt-del, input your admin info and it's as if the user unlocked it.
0
 

Author Comment

by:Burkl44
ID: 18046052
Maybe they did have a 3rd party program.  I'll check with the admins at my old company to see what they used.  I assumed it was a group policy option.

Thanks greatly for your help!
0
 

Author Comment

by:Burkl44
ID: 18046148
I'm going to split the points since all 3 of you provided beneficial information.  I hope this is fair for everyone.
0

Featured Post

Secure Your Active Directory - April 20, 2017

Active Directory plays a critical role in your company’s IT infrastructure and keeping it secure in today’s hacker-infested world is a must.
Microsoft published 300+ pages of guidance, but who has the time, money, and resources to implement? Register now to find an easier way.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Most MSPs worth their salt are already offering cybersecurity to their customers. But cybersecurity as a service is wide encompassing and can mean many things.  So where are MSPs falling in this spectrum?
There's a lot of hype surrounding blockchain technology. Here's how it works and some of the novel ways it' s now being used - including for data protection.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question