Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

"Allow logon locally" - User Rights Assignment - applied, but not taking effect

Posted on 2014-11-12
6
Medium Priority
?
68 Views
Last Modified: 2015-06-28
Hi,

I've recently set a new GPO to restrict the 'Allow logon locally' to Administrators, Power Users and Backup Operators.

Resultant Set of Policy shows this policy applies without a problem:

2.JPG
Yet when I launch gpedit.msc on the machine, it shows the following:

1.JPG
The policy seems to be applying, but not taking effect. The settings above are locked and I cannot manually modify them.

Does anyone have any idea why this is happening? Restarting the computer, running gpupdate /force, setting the GPO as 'Enforced' does nothing. Surely this setting should be overridden by the policy I have set?

Thanks in advance for any help.

Adrian
0
Comment
Question by:arbrctb
  • 2
  • 2
5 Comments
 
LVL 4

Expert Comment

by:bominthu
ID: 40437279
If you would like to know which policy applied to client machine in domain environment, you should run rsop.msc in RUN

Not gpedit.msc

Gpedit.msc is for Local machine group policy.
0
 

Accepted Solution

by:
arbrctb earned 0 total points
ID: 40437296
Hi,

I've just gone back to this and the policy has now applied.

I'd already ran a gpupdate /force and restarted twice - is there any reason why this policy has only taken effect now?

Thanks,
Adrian
0
 
LVL 4

Expert Comment

by:bominthu
ID: 40438033
If you have ran Gpupdate it should be updated in next restart.

If it is not, you need to check in your server event viewer if there is anything related to GPO
0
 

Author Comment

by:arbrctb
ID: 40444712
Thanks for your help.
0
 
LVL 36

Expert Comment

by:Seth Simmons
ID: 40855323
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Fill in the form and get your FREE NFR key NOW!

Veeam is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
Suggested Courses

782 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question