Here are some more complete instructions: Open AD Users and Computers. Create a Global group Add members to group accordingly, then assign directory rights accordingly.
Click Start -> Programs -> Administrative Tools and click Domain Controller Security Policy. Double click the Security Settings folder, double click Local Policies, and then click User Rights Assignment. Under the Policy column, click Logon Locally, and then click Add. Click Browse, select the appropriate group, then click Add. Click Ok, click Ok, click Ok. Open a command prompt and type the following command: secedit /refreshpolicy machine_policy /enforce Press Enter twice. (secedit replaced with gpupdate) <http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/ proddocs/en-us/Default.asp?url=/resources/documentation/windowsserv/2003/sta ndard/proddocs/en-us/RefrGP.asp> I also have a PDF document from IBM which indicates to update the local security policy and then the domain security policy and add log on locally and access this computer from the network rights. May need to go through Start > Run > secpol.msc /s Search for "How to set Local Security Settings for Windows 2003" technote ref# 1209467. Hth Colin Alfke Calgary Canada -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bill Haskett Sent: Tuesday, February 19, 2008 9:48 PM To: [email protected] Subject: RE: [U2] UD and SBS Server Colin: I followed the exact steps and still have the login problem. When I look at the in Administrative Tools I see there is no "Local Security Policy" but there was a "Domain controller security policy". In there I added the appropriate groups (noted as 'domain\group') to both local policies you mentioned, beneath user rights assignment. However, this didn't seem to work. Lord knows what the problem is, as we're trying to load onto an already setup and configured system. Bill _____ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Colin Alfke Sent: Tuesday, February 19, 2008 6:38 AM To: [email protected] Subject: RE: [U2] UD and SBS Server Bill; There are a couple of permissions that non-admin users need. Add the policies "Allow log on locally" and "Access this computer from the network" to your UniDataUsers group. In W2K3, select Administrative Tools/Local Security Policy and Domain Controller Security Policy, expand Security Settings, expand Local Policies, expand User Rights Assignment. Under the Policy column select "Allow log on locally" and add your group (or Users or Domain Users). Again select "Access this computer from the network" and add your group. To refresh policies without a server restart press Start/Run and at the Open: box enter gpupdate and press OK button. hth Colin Alfke Calgary Canada -----Original Message----- From: Bill Haskett I've installed UD v7.1.9 on a Windows 2003 SBS server. The matrix says 6.1.7 - 7.1.6 is certified on Win 2K3 SBS; it doesn't mention either 7.1.9 or 7.1.12. Unless I add a user to the Domain Admins group I cannot access via telnet. I created a group for "UniDataUsers" that has full control of all accounts, our application directory, and the "E:\IBM\ud71" directory. I added a new user and added the UniDataUsers group to them. I cannot login via telnet. I followed the following: http://support.microsoft.com/default.aspx/kb/292536 but this doesn't seem to help. The error I receive is: Welcome to DataTrust Telnet Server login: AsiOffice Password: Your account has restrictions that prevent you from logging on at this time. Please try again later. UniData telnet session terminating... This is the first time I've installed UD onto an SBS server. Does anyone know what this problem is? Thanks. Bill Haskett Advantos Systems, Inc. ------- u2-users mailing list [email protected] To unsubscribe please visit http://listserver.u2ug.org/ ------- u2-users mailing list [email protected] To unsubscribe please visit http://listserver.u2ug.org/ ------- u2-users mailing list [email protected] To unsubscribe please visit http://listserver.u2ug.org/
