Windows

well, for the user you want to add, is their account a local machine account or a domain account. Domain users don't automatically have local machine user accounts.

maybe it is a bug. we need the exact error message and anything in the event logs (Security)
did you see this:
"The local policy of this system does not permit you to logon interactively" error message when you log on to your Windows 2000-based computer"
http://support.microsoft.com/default.aspx?scid=kb;en-us;826903

The user account is a domain account. the Exact Error message is "The local policy of this system does not permit you to logon interactively". How I ended getting the user logon was I made her a power user then went to the DC check to see if there was anything there, no luck. I looked over the support.microsoft.com link, but I can log as a admin both local and domain, but the user can't.???? I would like to figure out a way to make the user a "Restricted User" and be able to logon. Anyone got any suggestions?

Point value changed by question poster.

you do say you checked the log on locally policy, but did you also check the "deny logon locally" policy to be sure that any groups the user are a part of are not there? it's a security policy issue one way or the other.

I have recently had a similar problem. In my case, if I configure the domain user as a local administrator I can logon, if not I get the same error message. I have check all policies but all appear to be okay. One thing, I recently implemented WSUS and I believe this is when the trouble started. (Yes I have checked my Domain's Group Policy). Any suggestions?

I feel your pain. You didn't specify but I'm assuming you are using Windows XP. When XP came out I initially had this same problem until I realized there was a new user group called REMOTE DESKTOP USERS.

Just add the user account into that group and you should be all set. The policy change might need a reboot to take affect, not sure.