Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 570
  • Last Modified:

the local policy of this system does not permit you to logon interactively

Today, our users started receiving the error message “the local policy of this system does not permit you to logon interactively” while trying to login on the domain from their computers.

In AD Default Domain Policy, we have “Allow Logon Locally” under Local Policies/User Rights Assignments enabled for “Everyone” group.

If a user is promoted to administrator, they can login, but not is they are users.
0
AJKBOC
Asked:
AJKBOC
  • 3
1 Solution
 
dacaseyCommented:
Check  the Deny log on locally policy.  It would override!

0
 
ckivmlCommented:
0
 
AwinishCommented:
First,no modification is recommended on default domain & default domain controller policy.

If its desktop like XP machine,you don't require explicit right esp GPO for log on locally but for RDP & server, yes you require to give them explicit permission through GPO.

http://social.technet.microsoft.com/Forums/en/winservermanager/thread/7d90c828-2a00-4606-b9ed-c0433d8cf2e5 

Check what went wrong on the client machine,logs & even viewer,any changes done on GPO to restrict log on locally.
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now