Nowadays, monitoring is a mixture of tools, systems, and codes—making it a very complex process. And with this complexity, comes variables for failure. Get DZone’s new Guide to Performance to learn how to proactively find these variables and solve them before a disruption occurs.
Course Of The Month
8 days, 12 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
2008 r2 denies local login
Posted on 2012-12-26
I had all users showing on the server login screen so I did the following.
1. Select Local Security Policy from Administrative Tools.
2. Expand Local Policies.
3. Select User Rights Assignment.
4. Double-click Deny log on locally to display dialog.
5. Add users or groups.
6. Click OK to save.
7. Reboot.
Then I tested and the 3 users did not show then rebooted and all was well.
Then to hide all users I accedentally put everyone as clear all users except Administrator.
It the would not allow local users to access the server.
The server is not a domain and no remote acces had been setup
Can you help ??
Dan Landry
1. Select Local Security Policy from Administrative Tools.
2. Expand Local Policies.
3. Select User Rights Assignment.
4. Double-click Deny log on locally to display dialog.
5. Add users or groups.
6. Click OK to save.
7. Reboot.
Then I tested and the 3 users did not show then rebooted and all was well.
Then to hide all users I accedentally put everyone as clear all users except Administrator.
It the would not allow local users to access the server.
The server is not a domain and no remote acces had been setup
Can you help ??
Dan Landry
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3
2
- +1
7 Comments
Active today
EDIT: Did not read it completely. Please ignore my suggestion.
You can try to RDP to the machine and access it that way.
Do you have RDP enabled.
You can try to RDP to the machine and access it that way.
Do you have RDP enabled.
Tried safe mode and got the option go to safe mode then continued and started normally.
So I cannot login. This is a production machine so I am in bad way.
Dan Landry
So I cannot login. This is a production machine so I am in bad way.
Dan Landry
Active today
Have you tried reboot into the last known good configuration?
Do you have a recent backup?
Do you have a recent backup?
Is the built-in firewall or another firewall enabled on the computer?
If not, perhaps you can open up the registry remotely from another computer and enable terminal services?
There is a key HKLM\SYSTEM\CurrentControl
Otherwise, there is a program that Microsoft published called NTRights.exe (http://support.microsoft.com/kb/315276) but to be honest, I don't have an environment to give this a shot in, but the command might look like this:
ntrights -u Everyone -m \\computername -r SeDenyInteractiveLogonRigh
I've never played with this before, so you might need to fine tune that, but from the commandline help file, this should remove the Everyone group from the Deny Interactive Logon Right. Also, I don't know if this program will work with a firewall enabled as well.
If not, perhaps you can open up the registry remotely from another computer and enable terminal services?
There is a key HKLM\SYSTEM\CurrentControl
Otherwise, there is a program that Microsoft published called NTRights.exe (http://support.microsoft.com/kb/315276) but to be honest, I don't have an environment to give this a shot in, but the command might look like this:
ntrights -u Everyone -m \\computername -r SeDenyInteractiveLogonRigh
I've never played with this before, so you might need to fine tune that, but from the commandline help file, this should remove the Everyone group from the Deny Interactive Logon Right. Also, I don't know if this program will work with a firewall enabled as well.
Active today
Can this server be restarted?
Do you have the ability to connect to the server HKLM hive?
if so there is a means to getting to GPEDIT.MSC
Connect to the HKLM\SYSTEM\STARTUP and change startupType = 2 and CmdLine to cmd.exe
Reboot and this will get you to a command prompt and it will be like it running for the first time.
In the CMD enter GPEDIT.MSC and modify the settings for Logon Locally
I just tested this on a server in my Lab and it worked.
Do you have the ability to connect to the server HKLM hive?
if so there is a means to getting to GPEDIT.MSC
Connect to the HKLM\SYSTEM\STARTUP and change startupType = 2 and CmdLine to cmd.exe
Reboot and this will get you to a command prompt and it will be like it running for the first time.
In the CMD enter GPEDIT.MSC and modify the settings for Logon Locally
I just tested this on a server in my Lab and it worked.
Not sure how it is going since you haven't responded back yet.
But just for future reference, in order to remove the user icons from the login screen, you need to disable Do not require CTRL-ALT-DEL to Logon Policy.
This is located at Computer Configuration\Policies\Win
But just for future reference, in order to remove the user icons from the login screen, you need to disable Do not require CTRL-ALT-DEL to Logon Policy.
This is located at Computer Configuration\Policies\Win
Featured Post
Synthetic Transaction Monitoring Vs. Real User Monitoring: When To Use Each Approach? In this article, we will discuss two major monitoring approaches: Synthetic Transaction and Real User Monitoring.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Scenario: You do full backups to a internal hard drive in either product (SBS or Server 2008). All goes well for a very long time. One day, backups begin to fail with a message that the disk is full. Your disk contains many, many more backups th…
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software.
Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers.
Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
Suggested Courses
Course of the Month8 days, 12 hours left to enroll
Earn Certification
MCSA Configuring Windows 7 Exam 70-680
$49.00$44.10
734 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.