dougdog
asked on
Network Level authentication
Hi there i have a windows 2008 r2 standard server running as a terminal server
i have set the network level authentication to allow any rdp connection
i have set this using local group policy on the terminal server and the remote tab
however every time the server restarts this reverts back to using network level authentication and no one can log in.
i am not aware of this being set at any other policy so i dont understand why this keeps reverting back.
How can i set this permantely
i have set the network level authentication to allow any rdp connection
i have set this using local group policy on the terminal server and the remote tab
however every time the server restarts this reverts back to using network level authentication and no one can log in.
i am not aware of this being set at any other policy so i dont understand why this keeps reverting back.
How can i set this permantely
ASKER
do you mean in remote desktop session host configuration
I mean log on to the console desktop itself and change the network level authentication, rather than making the change via Remote desktop.
While you're there, check for group policies (Command Prompt, gpresult /r) or Start -> Run -> MMC and add the Resultant Set of Policy snap-in which will tell you exactly what settings are being applied by which policy.
Hope this helps...
While you're there, check for group policies (Command Prompt, gpresult /r) or Start -> Run -> MMC and add the Resultant Set of Policy snap-in which will tell you exactly what settings are being applied by which policy.
Hope this helps...
ASKER
it was set to not configured
also no other policies are being applied
also no other policies are being applied
"it was set to not configured" - Have you now configured, or does the same thing keep happening?
ASKER
i changed it to disabled but every time the server restarts it sets it back to enabled.
i ran rsop and it is the local security policy
everytime i change it after a restart it sets it back to enabled
i ran rsop and it is the local security policy
everytime i change it after a restart it sets it back to enabled
Sorry to ask what may sound like a daft question. Where exactly are you making the change (i.e. secpol.msc, gpedit.msc)?
ASKER
gpedit.msc
also tried logging in locally and changing it
also tried logging in locally and changing it
Is your Default Domain policy set to 'Enforced'?
Also, from Egghead Cafe site, not sure if it will help:
There is an option RDP server config to Allow connections only from computers running Remote Destop with Network Level Authentication and it is enabled by default.
I disabled it and RDP is working for Win XP clients.
Also, from Egghead Cafe site, not sure if it will help:
There is an option RDP server config to Allow connections only from computers running Remote Destop with Network Level Authentication and it is enabled by default.
I disabled it and RDP is working for Win XP clients.
ASKER
when i run a rsop it is the local security policy that is changing not a domain policy
Not sure if it'll help, but according to Microsoft: If the Allow connections from computers running any version of Remote Desktop (less secure) is not selected and is not enabled, the Require user authentication for remote connections by using Network Level Authentication Group Policy setting has been enabled and has been applied to the RD Session Host server.
Not sure if that's then causing the other policy to reset.
Not sure if that's then causing the other policy to reset.
ASKER
still no luck
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
this was the answer
Also try running gpresult /r from a command prompt (or RSoP) to make sure there is definitely no over-riding policy.