Link to home
Start Free TrialLog in
Avatar of Schuyler Dorsey
Schuyler DorseyFlag for United States of America

asked on

Domain Admin account cannot login interactively, SBS 2003

I have a client who has an SBS03 server. Their domain admin account was set to no password (I know, I know. I tried and  tried but it is what they wanted).

A password mysteriously appeared on the admin account last week and neither of the two employees knew why so they asked me to reset it. So I went through the process of resetting the local admin password, logging into directory services restore mode and running the exe's from Microsoft. I reset the password and was able to get in fine. They specifically asked me to blank it again.

Now it has a password yet again. I reset the local admin password and ran the exe's again. Now when I try to log in to the domain admin account I get the message "this computers security policy does not permit this account to log in interactively".

I tried logging into the local security policy while back in directory services restore mode, it only lists SID's under the user rights assignments and not the domain accounts. Regardless, I cannot change or remove anything in the security policy. The options to, are grayed out.

I would appreciate a point in the right direction so I can get in and clean up/harden the server the way it needs to be.

Thanks!
Avatar of motnahp00
motnahp00
Flag of United States of America image

Check your User Rights Assignment within your applicable GPO.
rejoing the computers to the domain!
Avatar of Schuyler Dorsey

ASKER

I am sorry I forgot to mention, this is a domain controller. It is SBS2003.

I cannot access the GPO while logged into a local account. I cannot login to the domain admin account as noted in my previous message.

There are no other accessible domain accounts.
Do you have another DC to see what GPO settings are configured?
I do not. This is their one and only server. There are no member computers either.
ASKER CERTIFIED SOLUTION
Avatar of motnahp00
motnahp00
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Thanks for the help all. Through booting into directory services recovery mode, I looked through the event logs and discovered rdp access had been brute forced. Due to this, the business owner has opted to have the whole server reformatted.
That sounds like a wise decision by the owner. Good luck.