Win 2003 R2 Web Server in AD Domain - Unable to log on to Local Machine, unable to viw or configure local users and groups.

Posted on 2007-07-23
Last Modified: 2010-04-20
On a Windows 2003 R2 server configured as an APP and WEB server in a single AD domain, I am trying to set group permissions to allow a web app to work correctly, but (via Terminal Server) I am ...

1. unable to log on to the local machine - the only choice in the drop-down is the domain..
2. Logged on to the machine as a domain Admin, local users and groups are not present when in Computer Management, or when viewing Control Panel. When I look in Documents and Settings, several local users accounts are present.

What do I need to change here to allow me to log on to the local machine and access local users and groups ?

Question by:emoss2000
    LVL 8

    Accepted Solution

    either you are connecting to wrong server or you have promoted this server as Domain Controller.

    you are not able to see local system name in the log on to list because the server is a DC.
    LVL 8

    Expert Comment

    If the server is promoted to DC there will not be any local user or group.

    you have to demote this DC to access local user.

    by the way why do you want to configure local user account in a domain environment?
    this is not a best practice.

    Author Comment

    This Server is going to function as the SQL DB and web server for an HR management system. The instructions provided by the vendor for configuration of the ASPNET, IUSR<server_name, and Administrator accounts on the wwwroot folder can not be completed as written, as they are not for a DC...

    LVL 8

    Expert Comment

    same you can achieve by adding domain admins in place for administrator, iuser_<domain_netbiosname> for iusr_machine name

    for aspnet use see the ms kb

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Are your corporate email signatures appalling?

    Is it scary how unprofessional your email signatures look? Do users create their own terrible designs and give themselves stupid job titles? You can make this a lot easier for yourself by choosing an email signature management solution from Exclaimer today.

    Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip is around source server preparation. No migration is an easy migration, there is a…
    Installing a printer using group policy preferences is not that hard let’s take a look at it. First lets open up your group policy console and edit the policy you want to add it to. I recommend creating a new policy for each printer makes it a l…
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    10 Experts available now in Live!

    Get 1:1 Help Now