IN 2003 Domain Controller by default only 5 groups have the right to log on locally on the computer
1.Administrators Group
2.Account
3.Print
4.Backup
5.Server Operators
If any others when they try to login to DC they will get below error message
"The local policy of this system does not permit you to log-on interactively"
To give a specific user or group the right to log on locally on the DC You need to follow below steps
1.Administrators Group
2.Account
3.Print
4.Backup
5.Server Operators
If any others when they try to login to DC they will get below error message
"The local policy of this system does not permit you to log-on interactively"
To give a specific user or group the right to log on locally on the DC You need to follow below steps
Login to Domain Controller As a Administrator
Go to administrator tools - > Domain controller security policy -> Local Policy -> User right Assignment
you may find allow logon locally
Go to properties click on Add user or group
Click on browse - > then enter user/ group name you want to give the access
then click ok and Apply
No comments:
Post a Comment