Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

How to login to client pc even if the Domain Controller broken down or shutdown

Posted on 2014-07-25
3
604 Views
Last Modified: 2014-08-18
Hi All

          i have a question relating to the domain controller, if i have a pc which already joined to the domain, and if the DC shutdown, all of the client pc wont be able to login to the computer, is there any GPO i can modify even if the DC broken down, all the client pc still can able to login to the computer ? Thanks !
0
Comment
Question by:piaakit
3 Comments
 
LVL 11

Expert Comment

by:Joseph O'Loughlin
ID: 40219133
Log in normally, unless cached credentials are disabled.  See (for example)
http://windowsitpro.com/windows/domain-credential-caching
0
 
LVL 6

Expert Comment

by:Satish Auti
ID: 40219142
You can login using credentials who already logged on that pc from cache. no new logins possible.
0
 
LVL 12

Accepted Solution

by:
David Paris Vicente earned 500 total points
ID: 40219160
Hi,

Normally the user´s can log in to machines even if DC is down because Microsoft Windows caches previous users logon information locally so that they can log on if a logon server is unavailable during later logon attempts.

But for that the user´s had to logon in that machine at least once, before the DC is down or the logon will failed.
In case a user had made some changes in his account information's since the last logon, this will no be reflected in that session.

You can configure this security setting by opening the appropriate policy and expanding the console tree as such: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\

For windows 2008 the default value of the cachedlogonscount registry entry has changed from 10 to 25.

That setting is controlled by the following key:
   HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\Current Version\Winlogon\ 

   ValueName: CachedLogonsCount
   Data Type: REG_SZ
   Values: 0 - 50

Open in new window


The other way is with local user accounts.

Hope this helps.

Regards
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

To effectively work with Diskpart on a Server Core, it is necessary to write some small batch script's, because you can't execute diskpart in a remote powershell session. To get startet, place the Diskpart batch script's into a share on your loca…
You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

791 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question