Question about Microsoft Windows Server Standard 2003 for PC

1 Answer

Logging onto server/domain

I have restricted the user onto logging the domain / server that works fine but i want to stop the user logging on to the domain / server when server / domain if off, that particular client machine should not be able to login onto the domain if user and password is being added.

Posted by on

  • natekar Mar 29, 2008

    I problem got solved completely

×

1 Answer

  • Level 2:

    An expert who has achieved level 2 by getting 100 points

    MVP:

    An expert that got 5 achievements.

    Scholar:

    An expert who has written 20 answers of more than 400 characters.

    Hot-Shot:

    An expert who has answered 20 questions.

  • Expert
  • 101 Answers

Have I got this right. You want to prevent them from logging on to a particular pc without a username and password?
If the server is off the domain is not active to validate requests for authentication.
It might help me understand what you are trying to do if you tell me why you want this computer isolated as the solution I am thinking about may not be the right one. Is it in a public area or do you want to prevent guest users or some other reason.
Look forward to your next posting.
Julie

Posted on Mar 25, 2008

  • Julie Judson
    Julie Judson Mar 25, 2008

    There is a group policy setting

    Client computer>computer config>windows settings>security settings>local policies>security options>

    either interactive logon: do not require ctrl+alt+delete disable

    or interactive logon: require domain controller authentication enable

    but not sure if it fits your problem just yet.

    You could put this computer in its own OU and apply the policy to it. You will have to use a fresh policy with its own name though to do this.

×

1 Suggested Answer

6ya6ya
  • 2 Answers

SOURCE: I have freestanding Series 8 dishwasher. Lately during the filling cycle water hammer is occurring. How can this be resolved

Hi,
a 6ya expert can help you resolve that issue over the phone in a minute or two.
best thing about this new service is that you are never placed on hold and get to talk to real repairmen in the US.
the service is completely free and covers almost anything you can think of (from cars to computers, handyman, and even drones).
click here to download the app (for users in the US for now) and get all the help you need.
goodluck!

Posted on Jan 02, 2017

Add Your Answer

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

1 Answer

Restriction problem under domain environment(bizhub c280)


call your tech services rep, he will tell you in detail what you are asking..........
have a good time,,,,,

May 23, 2010 | Konica Minolta bizhub C250 All-In-One...

Tip

How to reset Windows Server 2008 domain password


Windows Server 2008 is one of Microsoft Windows' server line of operating systems. Besides Windows 7.Windows Server 2008 are the latest and more secured versions from Microsoft. Windows Server 2008 has many new features included that system administrators of small and large companies will enjoy. <br /> <br /> Many use Windows 2008 server as a workstation.That means A group of computers and devices on a network that are administered as a unit with common rules and procedures.And the host computer manage these computers through its admin account and password.<br /> <br /> If you have lost windows 2008 server local admin password, I think it is easy for you to recover the password.But what if you have lost windows domain password? Things will get more tricky and all of the computers in the domain paralyze.These passwords also called AD password.Before solving your password problem, you need to know what is Active Directory Domain Controller.<br /> <br /> <b>What is Active Directory Domain Controller?</b><br /> <br />A domain controller is a server that is running a version of the Windows Server operating system and has Active Directory Domain Services installed.<br /> <br /> When you install Windows Server on a computer, you can choose to configure a specific server role for that computer. When you want to create a new forest, a new domain, or an additional domain controller in an existing domain, you configure the server with the role of domain controller by installing Active Directory Domain Controller (AD DS).<br /> <br /> There is the diffence bettwen Domain and local. A Windows Server domain is a logical group of computers running versions of the Microsoft Windows operating system that share a central directory database. A user may be granted access to a number of computer resources with the use of a single username and password combination.<br /> <br /> A Domain Controller allows password authentication throughout a network. What this means is that your password is checked on the central server no matter which machine you log in from. A Domain Controller can also control access to files and directories which can be setup so users have access to all their files no matter which machine they log in from. This also makes adding and removing users among other things much easier as all that is required is a change on the Domain Controller itself rather than every machine on a network.<br /> <br />If you have lost this domain administrator password (also called AD password), it will be a tricky thing.However, Windows Password Key Enterprise can allow you to reset domain administrator password.<br /> Here is the steps to reset Windows server domain password<br /> <br /> Step 1: Download and install Windows Password Key Enterprise in any available computer.<br /> <img src="shalakate.jpg" /> Step 2: Run the software and insert a blank CD or USB Flash Drive to computer.<br /> Step 3: Select Domain Administrator and choose CD/DVD or USB Flash Drive<br /> Step 4: Click Burn to begin bootable disk creation.<br /> Step 5: Insert the newly created CD/USB Flash Drive to your locked computer , but remember you need to set the bios setup , make sure the computer to boot from CD or USB.<br />If you don't know how to set BIOS, take a look this tutorial.<br /> <a href="http://www.lostwindowspassword.com/how_it_works/bios_setting_for_cd.htm">http://www.lostwindowspassword.com/how_it_works/bios_setting_for_cd.htm</a><br /> <br />Step 6: And then you can recover your Domain admin password<br /> <br />Now you can log on your domain admin account and reset a new password.<br />Note: This can also work in Windows Server 2000,2003 <br /> cc

on Nov 29, 2010 | Computers & Internet

Tip

How to Reset AD Password for Windows Server 2000, 2003 and 2008?


Have you ever forgotten Active Directory (AD) password? Do you know how to reset AD password? Is there any Windows password reset software to do AD password reset? If not, what to do to reset AD password? Before answering these questions and do AD password reset, you need to what is active directory, Windows domain and domain controller.
What is Active Directory?Active Directory is used by system administrators to store information about users, assign security policies, and deploy software. It was released first with Windows 2000 Server edition and refined further in Windows Server 2008 and Windows Server 2008 R2 and was renamed Active Directory Domain Services. AD components include such domains, domain controllers, trust relationships, forests, organizational units, etc. What is a domain controller?
According to Wiki, a domain controller is a server that responds to security authentication requests (logging in, checking permissions, etc.) within the Windows Server domain. The domain controllers in your network are the centerpiece of your Active Directory service. It stores user account information, authenticates users and enforces security policy for a Windows domain. When you install Windows Server on a computer, you can choose to configure a specific server role for that computer. When you want to create a new domain, or an additional domain controller in an existing domain, you configure the server with the role of domain controller by installing AD DS.
What is a Domain?A domain is a concept introduced in Windows NT whereby a user may be granted access to a number of computer resources with the use of a single username and password combination.
The domain concept not only allows a user to have access to resources that may be on different servers, but it also allows one domain to be given access to another domain in a trust relationship. In this arrangement, the user need only log in to the first domain to also have access to the second domain's resources as well.
So it is hard to say if there any windows password recovery software can reset AD password. Windows password recovery software like Windows Password Unlocker Enterprise can allow you to reset domain administrator password on Active directory for Windows server 2000/2003/2008.
Steps to reset domain administrator password
  • Step 1: Download and install Windows Password Unlocker Enterprise in any available computer.
  • Step 2: Run the software and insert a USB flash drive to computer.
  • Step 3: Select Domain Administrator and target USB drive, and then click the Burn button to start burning an ISO image file to the USB flash drive.
  • Step 4: Click ok when burning process is completed.
  • Step 5: Insert the burned USB flash drive to your locked computer and set the computer to boot from USB.
  • Step 6: Choose the way to reset AD password.
  • 2 options for you to reset domain password
  • 0b60bd0.jpg
  • Option 1: Reset the default domain administrator password to Pa123456
  • Option 2: Reset AD password by creating a specified domain administrator account.
  • Step 7: Click YES to continue and click Ok when the domain password has been successfully reset.
Now you can log on your domain with the user name of administrator and password of 'Pa123456' if you select option 1. If you select option 2, you can log on domain with the username of 'passkiller' and password of 'Pa123456'.

on Oct 13, 2010 | Computers & Internet

2 Answers

Our WIN 2003 server is down and has been sent for repairs and only one user can no more log onto the domain while others still can work. The built-in administrator and domain administrator can still logon...


have you got a replacement server or member servers that are doing the other roles whilst the other server is sent off for repairs ?

Are the users logging in locally into the computers or what exactly ?

If the first then create another account in AD for the user to temporarily use ( you can use robocopy utility with the robocopy gui )

robocopy gui here

windows resource kit which includes robocopy here

Then you can copy there data from there existing home area to there new home area ( which will duplicate it for a while ) so that they still have access to there data.

If its a local account they are using then obviously just create another account on the computer they use

Apr 16, 2009 | Microsoft Windows Server Standard 2003 for...

1 Answer

User creating in domain


In active directory on the server you need to create a network admin user and any other normal users u want to have access to the domain.
Then you have to add the pc to the domain using the network admin user.
After this u can log on to the pc with the network admin or the other created user names.

Apr 15, 2009 | HP Pavilion dv2000t 14.1" Notebook Laptop...

2 Answers

Logon issue in a domain trust - Win 2003


Are you logging in through terminal services? If so you need to give the user "allow logon through terminal services" permission in group policy.

Otherwise you need to give the user "allow logon locally" permission on the domain controller.

Mar 20, 2009 | Microsoft Windows Server Standard 2003 for...

1 Answer

Domain\administrator has no local admin rights


You may need to edit group policy if this was once in a domain. You may want to try rebooting the machine and logging into the 'LOCAL' machine and see if you have rights that way. Each machine by default has one administrator account but if the server was part of a domain, that right may have been removed. You may need to reset OWNER privileges for all files in the machine.

Jul 24, 2008 | Microsoft Windows Server Standard 2003 for...

1 Answer

Ristricted logging onto server when server is off


Hi
Thanks for the background info, this makes it easier for me to see what you need.
You need to disable your guest account if you havnt already done so.
The user is logging on with a cached version of the logon information, this is useful for when the server goes down but not in your case as you need to prevent this.
Another worrying aspect is that you allow all your users to log on using the same password. Very bad from a security aspect anyhow. It is better to change at least every 30 days. If they moan they will get used to it soon enough.
Go into group policy again and computer configuration>windows settings>security settings>local policies>security options and look for interactive logon:number of previous logons to cache - set this to 0. If the domain controller is not available and the logon info is not cached they cannot logon to domain.
Group policy can be overruled at the client end if they have admin priviledges so you may have to set this on the client pc also. But you need to test to see if it is required there. I have not used that particular policy but it should be ok just on the server. Your users dont have admin rights do they? Anyway good luck. You can set this by applying it to an OU or domain wide but if you want to target just this one pc then maybe if you put it in its own ou and apply it just there.
You need to create new policies rather than modifying the domain one and keep each policy for specific purposes so that applying them to ou's is easier, ie internet options policy, firewall policy, working hours policy etc.
Regards
Julie

Mar 26, 2008 | Computers & Internet

1 Answer

Logging on to server


You need to go into administrative tools and look for group policy.

In the local computer policy
Computer Configuration
Windows Settings > security settings > Local policies > user rights assignment. In the right hand pane find the policy for "Allow log on locally" Set the user accounts for those users which are allowed to log on interactively on the server. Be careful you dont lock the administrator account out.
Use in conjunction with the "Deny logon locally policy" if you need to.
Hope this helps

Mar 22, 2008 | Microsoft Windows Server Standard 2003 for...

Not finding what you are looking for?
Microsoft Windows Server Standard 2003 for PC Logo

Related Topics:

105 people viewed this question

Ask a Question

Usually answered in minutes!

Top Microsoft Computers & Internet Experts

micky dee

Level 3 Expert

2644 Answers

Piyal Perera
Piyal Perera

Level 3 Expert

528 Answers

Les Dickinson
Les Dickinson

Level 3 Expert

18385 Answers

Are you a Microsoft Computer and Internet Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...