Solved

Can't authenticate local admin using RDP

Posted on 2014-09-08
5
584 Views
Last Modified: 2014-09-26
Trying to login to a Windows server remotely using RDP local Administrator username and password as credentials, but I get a failure to authenticate. Syntax I'm using is <servername>\Administrator and then the password. I can logon remotely using my Domain admin account, however. So I know RDP is working fine.

User Rights Assignments have the Administrator group as member of Allow Log on Locally and Allow Log on through Remote Desktop Services and Administrator local user is a member of the local Administrator group. Any ideas appreciated.
0
Comment
Question by:nurturer69
  • 3
  • 2
5 Comments
 
LVL 29

Expert Comment

by:becraig
ID: 40310809
This sounds like built-in Administrator account is disabled or blocked from local logon.

This would not be surprising as it is an industry best practice not to allow remote access for built-in accounts.
They should generally be disabled the first chance you get.
0
 

Author Comment

by:nurturer69
ID: 40310858
So, as it is a built-in account and presumed 'local', no RDP access is possible?
0
 
LVL 29

Expert Comment

by:becraig
ID: 40310860
It depends on the state of the account.

It is however not recommended to leave built-in accounts functional.
0
 

Author Comment

by:nurturer69
ID: 40312156
Well, I've been charged with making them functional. May not agree with it, but that's the deal. So, I need to figure out can the local administrator account be accessed thru RDP? And what might be preventing that from happening.
0
 
LVL 29

Accepted Solution

by:
becraig earned 500 total points
ID: 40312539
Here is a link from MS on enabling the built-in Administrator account:

http://technet.microsoft.com/en-us/library/hh825104.aspx

You can then check to see if you have any defined group policy blocking local logon for the administrator account, or better yet just add it to one of the groups already granted local logon, since it is not really an RDP connection as the local user is logging onto the local computer.
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I was asked if I could set up a fax machine so that incoming faxes were delivered to people's Exchange inboxes and so that they could send faxes from their desktops without needing to print the document first.  I knew it was possible but I had no id…
You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now