I am having trouble adding a new user to my system and having them be able to log on...
I have a server which is my active directory server. On that box, I used "Active Directory Users and Computers" to add the new person.
On a second server that hosts IIS, I setup a site that uses windows authentication When I try and enter the credentials for the new user, the logon fails with "401 - Unauthorized: Access is denied due to invalid credentials.". Other users which have been previously created work fine.
When I go to group policy object editor, and drill down to "Local computer Policy\computer configuration\windows settings\security settings\Local policies\User rights assignments", I see that the setting "Access this computer from the network" does not have the new user included. When I try and add the user, the "add user or group" button is greyed out. Other users that can successfully log on are included in this list, so I think this is the problem. How to I add the new person to that list? Why Grayed out?
I have tried synching ad using "gpupdate /force". I have tried rebooting both servers. What am I missing?
The AD server is running W2008, the Web server is running W2012.
Also, I can log on to the server using remote desktop using the new users credentials.