I'm having a strange problem with loggin in on XP Pro.
When I logon remotely to one user's machine as an Admin,
the user cannot log in on that machine again until I
logon locally as an Admin and log out again. The error
message says: "Your interactive logon privilege has been
disabled. Please contact your system administrator"
I'm authenticating to a server running SBS 2000.
Can anyone help me figure this out? I've checked the
account on the server, the local account settings, Policy
settings on both the desktop and the server and nothing
jumps out as blatently wrong. What should I be looking
for?

Bruce

Did you enable the security policy "Audit: Halt the system if unable to log
security events"?

1: Log on as administrator, start regedit, and delete the following registry
value:
Key: HKLM\System\CurrentControlSet\Control\LSA
Value: CrashOnAuditFail (reply with what this value was set to, but go
ahead and delete the value)

2. Then close regedit, and start/run "secpol.msc".
3. Navigate to Security Settings\Local Policies\Security Options
4. Look for the option "audit: halt the system if unable to log security
events" and set it to "disabled".
5. Reboot.

Eric


"Bruce Foster" > wrote in message
...
> I'm having a strange problem with loggin in on XP Pro.
> When I logon remotely to one user's machine as an Admin,
> the user cannot log in on that machine again until I
> logon locally as an Admin and log out again. The error
> message says: "Your interactive logon privilege has been
> disabled. Please contact your system administrator"
> I'm authenticating to a server running SBS 2000.
> Can anyone help me figure this out? I've checked the
> account on the server, the local account settings, Policy
> settings on both the desktop and the server and nothing
> jumps out as blatently wrong. What should I be looking
> for?
>
> Bruce

The value on the key was 0. The "audit: halt the system
if unable log security" is set to disable. It does not
look like either of those is the issue as they are
exactly the same as another machine that works fine. Any
other ideas? (Thanks for giving me something to look
at. This is my boss's machine, so I need to at least
look like I'm doing something ;)


>-----Original Message-----
>Did you enable the security policy "Audit: Halt the
system if unable to log
>security events"?
>
>1: Log on as administrator, start regedit, and delete
the following registry
>value:
>Key: HKLM\System\CurrentControlSet\Control\LSA
>Value: CrashOnAuditFail (reply with what this value was
set to, but go
>ahead and delete the value)
>
>2. Then close regedit, and start/run "secpol.msc".
>3. Navigate to Security Settings\Local Policies\Security
Options
>4. Look for the option "audit: halt the system if unable
to log security
>events" and set it to "disabled".
>5. Reboot.
>
>Eric
>
>
>"Bruce Foster" > wrote in message
...
>> I'm having a strange problem with loggin in on XP Pro.
>> When I logon remotely to one user's machine as an
Admin,
>> the user cannot log in on that machine again until I
>> logon locally as an Admin and log out again. The error
>> message says: "Your interactive logon privilege has
been
>> disabled. Please contact your system administrator"
>> I'm authenticating to a server running SBS 2000.
>> Can anyone help me figure this out? I've checked the
>> account on the server, the local account settings,
Policy
>> settings on both the desktop and the server and nothing
>> jumps out as blatently wrong. What should I be looking
>> for?
>>
>> Bruce
>
>
>.
>

Hey Bruce,

What OS/version/service pack is running on the workstation that you're
logging on to locally (I understand that you have SBS2000 running as a DC)?

Have you set any group policy on SBS 2000?

Are you running any logon scripts?

Are you logged out remotely from the boss' workstation? On XP, remote
desktop only allows one active logon session, either locally or remotely.
Disconnecting is not good enough; you need to log out.

Thanks,

Eric


"Bruce" > wrote in message
...
> The value on the key was 0. The "audit: halt the system
> if unable log security" is set to disable. It does not
> look like either of those is the issue as they are
> exactly the same as another machine that works fine. Any
> other ideas? (Thanks for giving me something to look
> at. This is my boss's machine, so I need to at least
> look like I'm doing something ;)
>
>
> >-----Original Message-----
> >Did you enable the security policy "Audit: Halt the
> system if unable to log
> >security events"?
> >
> >1: Log on as administrator, start regedit, and delete
> the following registry
> >value:
> >Key: HKLM\System\CurrentControlSet\Control\LSA
> >Value: CrashOnAuditFail (reply with what this value was
> set to, but go
> >ahead and delete the value)
> >
> >2. Then close regedit, and start/run "secpol.msc".
> >3. Navigate to Security Settings\Local Policies\Security
> Options
> >4. Look for the option "audit: halt the system if unable
> to log security
> >events" and set it to "disabled".
> >5. Reboot.
> >
> >Eric
> >
> >
> >"Bruce Foster" > wrote in message
> ...
> >> I'm having a strange problem with loggin in on XP Pro.
> >> When I logon remotely to one user's machine as an
> Admin,
> >> the user cannot log in on that machine again until I
> >> logon locally as an Admin and log out again. The error
> >> message says: "Your interactive logon privilege has
> been
> >> disabled. Please contact your system administrator"
> >> I'm authenticating to a server running SBS 2000.
> >> Can anyone help me figure this out? I've checked the
> >> account on the server, the local account settings,
> Policy
> >> settings on both the desktop and the server and nothing
> >> jumps out as blatently wrong. What should I be looking
> >> for?
> >>
> >> Bruce
> >
> >
> >.
> >