Solved

Cannot RDP into Server 2008 server with domain admin account

Posted on 2014-07-23
6
1,745 Views
Last Modified: 2014-07-29
Hello,
I am running a VM of server 2008 but unable to login via RDP with my user account. My user account is a member of the Remote Desktop users group, and also a member of domain admins group. However, over RDP, it just keeps asking me for a password over and over again as if I'm authenticating with incorrect credentials. When I am logging into the machine from Vsphere locally, it allows me through with no issues when logging into the domain.

I have not had this happen to me before and puzzled as to what I'm missing.  Any ideas?

Thanks,
0
Comment
Question by:kjs00333
  • 4
6 Comments
 
LVL 3

Expert Comment

by:Keith Langmead
ID: 40215185
Go into the Local Security Policy on that machine, and drill down to Local Policies, User Rights Assignment, and then ensure that Remote Desktop Users group is listed in "Allow log on through Remote Desktop Services", and isn't listed in the accompanying Deny rule further down.
0
 
LVL 24

Expert Comment

by:smckeown777
ID: 40215186
Are you supplying the username in the 'domain\username' format? Are you getting as far as the dialog which shows the login screen?
0
 

Author Comment

by:kjs00333
ID: 40216570
Since this is happening to all servers in this domain, is it possible to implement a GPO to handle this? If so, where would that setting be located?
0
 

Author Comment

by:kjs00333
ID: 40216617
Forgot to add this is a Windows 2008 domain / forest.  When I add a 2008 server into a Windows 2k3 domain, I do not experience these issues.
0
 

Accepted Solution

by:
kjs00333 earned 0 total points
ID: 40217083
I was able to resolve. Apparently the 2 member servers in my domain were created from a VM Template which contained the same SID as the domain controller. I really don't understand how this happened since I syspreped the VMs before turning it into a template.

When you deploy the template I made, you are greeted with the OOBE setup for Windows 2008..  So I am really not sure why this is happening, but re-syspreping the box corrected the domain login issue.  I was able to locate this by combing through the security logs and saw an error leading to a SID issue.

Thanks,
0
 

Author Closing Comment

by:kjs00333
ID: 40226207
Security logs pointed me to the correct location on how to fix this issue.
0

Join & Write a Comment

Synchronize a new Active Directory domain with an existing Office 365 tenant
Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now