I'm having a problem on my network, its running a WS 2008R2 and the workstations are XP pro, we have just set up the domain and everything was working fine, then we tweaked the software restriction policies, and just added an additional rule to block the path of the software we intended to block. after doing this all the users on the domain started having problems logging in they got the message "Local Policy of this System Doesnt permit you to login interactively" to fix this we restored the security settings using the following command : "secedit /configure /cfg %windir%\repair\secsetup.inf /db secsetup.sdb /verbose" on each computer logged in as a domain admin, now users can log in with no problems until the next day, then they get the same issue, and the same solution is applied, this happens to some computers and some users, its not the same users/computers all the time. but the worst thing is that on 2 specific computers no matter who logs in the billing software doesn't work, only if I log on as an admin, then it works. we have even uninstalled and re installed the software and the same thing happens, we have removed the additional rule that was created to block firefox, and also restored to default the domain GPO and the default domain DC GPO using "dcgpofix /target:both" the problem is still there and the thing I don't understand is that the users can log in and use the Billing Software in any computer but 2. I even tried removing and re adding the computer from the domain and the problem persists. what can I do??
any help will be greatly appreciated.