RE: [ActiveDir] GPO

[Darren Mar-Elia]

Title: Message

Actually, you don't want to do this on the local security policy because then it will only apply to that DC. On the Default Domain Controllers Policy, check what you have under:   Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment\Log on locally   Make sure you haven't included groups for that right that include the user in question. From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: Monday, July 12, 2004 6:51 AM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] GPO Remove that user from Logon Locally thru Local Security Policy on that DC.   Cheers, AThif -----Original Message----- From: George Arezina [mailto:[EMAIL PROTECTED] Sent: Monday, July 12, 2004 4:36 PM To: [EMAIL PROTECTED] Subject: [ActiveDir] GPO Hi folks, I have a problem with default domain policy and default domain controller policy. I have given read and apply permissions to authenticated users on both policies. However, an authenticated user is able to logon to the DC. Can someone please direct me in the right direction and tell me how to configure so that the only people able to logon on the DC are administrators? Thanks... ----------------------------------------------------- This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom/which they are addressed. If you have received this email in error please notify the system manager at the following email address: [EMAIL PROTECTED] . Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Al Faisaliah Group. Internet communications cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, arrive late or contain viruses. The sender therefore does not accept liability for any errors or omissions in the context of this message, which arise as a result of Internet transmission. Finally, the recipient should check this email and any attachments for the presence of viruses. Al Faisaliah Group accepts no liability for any damage caused by any virus transmitted by this email. -----------------------------------------------------