Solved

"Allow logon locally" - User Rights Assignment - applied, but not taking effect

Posted on 2014-11-12
6
50 Views
Last Modified: 2015-06-28
Hi,

I've recently set a new GPO to restrict the 'Allow logon locally' to Administrators, Power Users and Backup Operators.

Resultant Set of Policy shows this policy applies without a problem:

2.JPG
Yet when I launch gpedit.msc on the machine, it shows the following:

1.JPG
The policy seems to be applying, but not taking effect. The settings above are locked and I cannot manually modify them.

Does anyone have any idea why this is happening? Restarting the computer, running gpupdate /force, setting the GPO as 'Enforced' does nothing. Surely this setting should be overridden by the policy I have set?

Thanks in advance for any help.

Adrian
0
Comment
Question by:arbrctb
  • 2
  • 2
6 Comments
 
LVL 4

Expert Comment

by:bominthu
ID: 40437279
If you would like to know which policy applied to client machine in domain environment, you should run rsop.msc in RUN

Not gpedit.msc

Gpedit.msc is for Local machine group policy.
0
 

Accepted Solution

by:
arbrctb earned 0 total points
ID: 40437296
Hi,

I've just gone back to this and the policy has now applied.

I'd already ran a gpupdate /force and restarted twice - is there any reason why this policy has only taken effect now?

Thanks,
Adrian
0
 
LVL 4

Expert Comment

by:bominthu
ID: 40438033
If you have ran Gpupdate it should be updated in next restart.

If it is not, you need to check in your server event viewer if there is anything related to GPO
0
 

Author Comment

by:arbrctb
ID: 40444712
Thanks for your help.
0
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 40855323
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I was supporting a handful of Windows 2008 (non-R2) 2 node clusters with shared quorum disks. Some had SQL 2008 installed and some were just a vendor application that we supported. For the purposes of this article it doesn’t really matter which so w…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question