Avatar of nav2567
nav2567
Flag for United States of America asked on

Disable interactive logon for all service accounts

Hello,

We created an AD account which is in the domain admin group and use it in some Windows Services.  

If I want to disable  interactive logon for this service account, what is the best way to do it?

Please advise.

Thanks.
Windows Server 2012Microsoft Server OSActive Directory

Avatar of undefined
Last Comment
Shaun Vermaak

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Mahesh

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Shaun Vermaak

Same process as setting up a Tier as described in this article. Instead of isolating the GPO to some devices, apply it to all and add all the service accounts to the group which will be denied logon
https://www.experts-exchange.com/articles/29515/Active-Directory-Simple-Tier-Isolation.html
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy