?
Solved

How can I configure group policy to allow domain admins to unlock pcs without logging the user out?

Posted on 2006-11-30
6
Medium Priority
?
1,048 Views
Last Modified: 2008-02-01
Hi all,

We're using Server 2003 on our domain controller and have a mix of XP and W2K workstations.  How can I configure group policy to allow domain admins to unlock pcs without logging the user out?  I'm assuming this is done through group policy, so please correct me if I'm wrong.

Thank you!
0
Comment
Question by:Burkl44
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 2

Accepted Solution

by:
LanBuddha earned 332 total points
ID: 18045985
I don't believe this can be done. Only one person can be logged on interactive to a workstation at a time.
0
 
LVL 7

Assisted Solution

by:killbrad
killbrad earned 332 total points
ID: 18046004
This is not possible.

If you were running XP OUTSIDE of a domain environment, enabling Fast User Switching does what you want..  
However, in a domain Fast User Switching can't be turned on.
0
 
LVL 16

Assisted Solution

by:AdamRobinson
AdamRobinson earned 336 total points
ID: 18046021
As said above, in the default Windows Lock, you cannot unlock the user's session without terminating said session.

There are third party programs you could purchase and install that will allow you to do this through their lock (lock my pc, etc.)

Or you could remove locking all together.
0
Get real performance insights from real users

Key features:
- Total Pages Views and Load times
- Top Pages Viewed and Load Times
- Real Time Site Page Build Performance
- Users’ Browser and Platform Performance
- Geographic User Breakdown
- And more

 

Author Comment

by:Burkl44
ID: 18046031
I did this at my last company so maybe I'm not explaining it well.  I just want to be able to unlock a locked machine so that the user is still logged on.  Basically overriding the lock.  You hit ctrl-alt-del, input your admin info and it's as if the user unlocked it.
0
 

Author Comment

by:Burkl44
ID: 18046052
Maybe they did have a 3rd party program.  I'll check with the admins at my old company to see what they used.  I assumed it was a group policy option.

Thanks greatly for your help!
0
 

Author Comment

by:Burkl44
ID: 18046148
I'm going to split the points since all 3 of you provided beneficial information.  I hope this is fair for everyone.
0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There is a lot to be said for protecting yourself and your accounts with 2 factor authentication.  I found to my own chagrin, that there is a big downside as well.
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses

800 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question