Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
hi
i have denied logon access to a co worker, and i would like him to regain access. what can i do to get him back on?
i have looked in AD under that particular DC properties- no security tab. im not sure how i locked him out, but i need to reverse it.
what am i missing?thanks a lot for the help.
so let me understand this, you are the nw admin and you restricted a user's access to a directory and dont know how to change it back? Were you supposed to have access to this? I really am not trying to be a smarta$$ here but that just doesnt you nd right.
0 
Off with his head I say! After all someone isn't using it :-)
Ok OK bad pun.
pap0007 you would go to the users account and see if it is enabled. This is where you could deny account logon. you would find him under the OU the user is in AD
0
wanderer...it wasnt that bad, pretty accurate actually. are you not still amazed when you see things like this in a business environment? I cannot imagine giving end users access to servers on a nw (assuming that was the case and someone didn't just go somewhere they shouldnt have....) I saw it all the time when i was consulting and this is nothing compared to some of the 1d 10 T error I ran accross..
0
ok so i worded that somewhat incorrectly.
and mike- save your words. does it arouse you to talk $hit, and help no one? i bet you visit these forums just to talk trash because your life sucks. stop wasting your and my time.
everyone else, im sorry for that.
let me elaborate: i have denied a tech working under me access to the DC. the message he receives is "you cannot log on interactively". however i still can logon...
i cant seem to find the security object for the DC, in AD there is no security tab for the DC.where is the DC security access list?
thanks for any help.
0
is this user a member of any groups on the server?
is he listed under Deny Logon locally in local security settings?
0
in the local policy (secpol) there are no policies defined.
i have just enabled a group he is in to "allow remote logon" in the domain group policy object for the DC (in AD), this did not solve the problem...
thanks for any more help
0
you might want to look through the forum before you say all I do is talk sh!t, I've answered hundreds of questions. Funny, I haven't seen you answer any. As for the reast of your post, bite me and learn what you are doing.
0
mike- i wish i had more time to argue with you about how you neednt post in my forum to waste my time, however i have more important things going on.
sorry
o btw, bite me- thats a good one (wish i thought of that)
0
One requirement is the user must have administrative rights. If the user doesn't, you will get that message about not being able to log on interactively.
0
DC- he is a domain admin...
and i received this funny error every time i try to log him in- in the event viewer of the DC-
"failed to load terminal server profile path. note that the profile path must be less than 256 characters in length."
i look in AD, and he has no specified profile...
0  |
 internet for users
|
Confused with setup, plea...
|
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
