Remote desktop on domain: The local policy of this system does not permit you to logon interactively

C

Chris

I tried posting this earlier...but it didn't seem to post.

Hello,
I've recently set up a domain controller and domain, but cannot logon
to any of the domain accounts via. remote desktop. I've taken the
following steps:

1) Setup and created domain, users etc. (Windows Server 2003 Standard,
Active Directory)
2) Added the users I want remote desktop for to the Remote Users
group.
3) Set Allow log on locally and Allow log on through Terminal Services
to include this group from the "Default Domain Security Settings"
configuration.
4) Set Deny log on locally / Terminal Services to not have anyone
included.
4) Forced a refresh of the domain.

When I try to log on to the workstation, a local account succeeds, but
a domain account fails. I can't add domain accounts to the remote
desktop users group on the workstation, so I don't know what I'm
missing.

Can someone please help me!?

Thanks,
Chris
 
S

Shenan Stanley

Chris said:
I've recently set up a domain controller and domain, but cannot
logon to any of the domain accounts via. remote desktop. I've
taken the following steps:

1) Setup and created domain, users etc. (Windows Server 2003
Standard, Active Directory)
2) Added the users I want remote desktop for to the Remote Users
group.
3) Set Allow log on locally and Allow log on through Terminal
Services to include this group from the "Default Domain Security
Settings" configuration.
4) Set Deny log on locally / Terminal Services to not have anyone
included.
4) Forced a refresh of the domain.

When I try to log on to the workstation, a local account succeeds,
but a domain account fails. I can't add domain accounts to the
remote desktop users group on the workstation, so I don't know what
I'm missing.

Can someone please help me!?
Click to expand...
I tried posting this earlier...but it didn't seem to post.

I've recently set up a domain controller and domain, but cannot
logon to any of the domain accounts via. remote desktop. I've
taken the following steps:

1) Setup and created domain, users etc. (Windows Server 2003
Standard, Active Directory)
2) Added the users I want remote desktop for to the Remote Users
group.
3) Set Allow log on locally and Allow log on through Terminal
Services to include this group from the "Default Domain Security
Settings" configuration.
4) Set Deny log on locally / Terminal Services to not have anyone
included.
4) Forced a refresh of the domain.

When I try to log on to the workstation, a local account succeeds,
but a domain account fails. I can't add domain accounts to the
remote desktop users group on the workstation, so I don't know what
I'm missing.

Can someone please help me!?
Click to expand...

GPRESULT shows your policies are being enforced and looking at a local
machine in question (Compute Management) shows that the proper DOMAIN users
are in the Remote Desktop Users local group?
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Remote Desktop interactively logon error 1
The local policy of this system does not permit you to logon interactively 3
Error: 'local policy of the system doe not permit you to logon interactively 1
The Local Policy of the system doesn't permit you to log on interactively 5
Local Policy .. Does Not Permit You to Log on Interactively 7
The local policy of this system does not permit you to logon interactively. 1
The local policy of this system does not permit you to logon interactively 1
The local policy of this system doesn't allow you to logon interactively. 6

Top