Solved

Login banner not working

Posted on 2011-03-03
20
467 Views
Last Modified: 2012-08-13
I cannot get the logon banner to appear when users log into the network (Windws 2003 Server Active Directory).  I've defined the Interactive login message texts and title for the default domain policy in Group Policy Management.  I then ran GPUPDATE.  However, the banner still will not appear on any workstations when the user logs in.  Am I missing something?  Thanks!
0
Comment
Question by:markrkelley123
  • 11
  • 9
20 Comments
 
LVL 3

Expert Comment

by:lloydclinton
Comment Utility
Whats OS?  Did you do gpupdate/force on the client machine?  Default update time for GP is 90 minutes..
0
 

Author Comment

by:markrkelley123
Comment Utility
I appreciate the quick response.  Yes, I applied the /FORCE switch.  And this was about 5 hours ago.
0
 

Author Comment

by:markrkelley123
Comment Utility
Regarding what OS, all the client machines are either Windows 7 Professional or XP Professional.
0
 
LVL 3

Expert Comment

by:lloydclinton
Comment Utility
Windows XP?  Have you checked your event viewer to make sure there hasn't been any problems with your active directory updating?
0
 

Author Comment

by:markrkelley123
Comment Utility
Nothing in the Event Viewer that relates to this.
0
 
LVL 3

Expert Comment

by:lloydclinton
Comment Utility
You did it like this?:

Open the GPO… expand ‘Windows Settings’, ‘Security Settings’, ‘Local Policies’, ‘Security Options’.

“Interactive Logon: Message title for users attempting to log on”.
(Place your message into this policy.)

“Interactive Logon: Message text for users attempting to log on”
(use something like “System Use Notice” for the title of the message box .)
0
 

Author Comment

by:markrkelley123
Comment Utility
Exactly like that!
0
 

Author Comment

by:markrkelley123
Comment Utility
In fact, when it generates the report under Settings for the Default Domain Policy my banner text and title are listed there.
0
 
LVL 3

Expert Comment

by:lloydclinton
Comment Utility
Are other settings in your default policy working properly?
0
 
LVL 3

Expert Comment

by:lloydclinton
Comment Utility
Also, do you have a PC that you can remove from the domain, delete the computer account from AD and rejoin it?
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:markrkelley123
Comment Utility
As far as I can tell, all the other settings are working properly, although this is pretty much a vanilla setup and nothing too sophisticated exists (i.e. password lengths, etc.)  If this was the case, what would cause the GP to not work?

I was working on a separate problem earlier where I had to remove/add a PC from AD.  The banner never appeared as well.
0
 
LVL 3

Expert Comment

by:lloydclinton
Comment Utility
How many dcs are in your domain?  are they all 2k3?  Does 1 dc hold all roles?
0
 

Author Comment

by:markrkelley123
Comment Utility
Only one DC and it's 2k3.  And yes, the PDC holds all the roles except for DHCP.

BTW, when you right-click on a policy (there are three: Administrator GPO, Default Domain Policy, and Non Administrator) what does "Enforced" mean/does?
0
 
LVL 3

Expert Comment

by:lloydclinton
Comment Utility
When it is enforced it can not be over ruled by other policy.
0
 
LVL 3

Expert Comment

by:lloydclinton
Comment Utility
Can you set another policy such as the default screensaver and then make it so the users can't change it... force it and see if it takes... if it doesn't there may possibly be a problem with AD... do you have the means to install a 2nd DC?  Also are there *any* errors in the event viewer?
0
 

Author Comment

by:markrkelley123
Comment Utility
Hi lloydclinton,

Just returned from traveling.  Will try your suggestions today.  Thanks!
0
 

Author Comment

by:markrkelley123
Comment Utility
The latest:  Any other policy changes that I make to the Default Domain Policy do NOT take affect (i.e. Do not require CTL-ALT-DELETE, screensavers, etc.).

However, they DO take affect at the Domain Controller (fileserver) when I log in as a user or administrator.

There are NO errors reported in the Event Viewer.

Furthermore, I ran regedit and the Interactive Login text and title DO appear in:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\policies\system

I'm pretty stumped at this point....
0
 

Accepted Solution

by:
markrkelley123 earned 0 total points
Comment Utility
To fix this problem, I ended up deleting all the existing policies (with the exception of the Default Domain Policy) and recreated them from scratch.  That seemed to work.
0
 
LVL 3

Expert Comment

by:lloydclinton
Comment Utility
I am glad you found a solution to the problem.
0
 

Author Closing Comment

by:markrkelley123
Comment Utility
Didn't really find answer to question.  Just had to start over.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

The password reset disk is often mentioned as the best solution to deal with the lost Windows password problem. In Windows 2008, 7, Vista and XP, a password reset disk can be easily created. But besides Windows 7/Vista/XP, Windows Server 2008 and ot…
Resolve DNS query failed errors for Exchange
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now