General discussion


NT 4 security policies and Server 2003

By turkyman ·
Hello all,

We have recently upgraded our existing domain from a Windows NT 4.0 domain to a mixed-mode 2003 domain. Our existing users were programmed with NT Policies to restrict their access to the run command, adding printers, etc. Now, we are in the 2003 environment and we cannot remove the existing policies nor modify them. It seems they are hard-coded. The only way to correct it so far has been to reset their roaming profiles. But, that removes all of their other configuration settings. Does anybody know how we can either activate the existing policies to give them wide-open access before converting them to an OU-based policy, or is there a way to remove the existing NT policy from the user account without affecting all other aspects of the profile?

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

by CG IT In reply to NT 4 security policies an ...

look at Microsoft's Help & Support Article # 325851 "How to: Setup ADMT for Migration from NT to 2003 AD. An article on Active Directory Migration Tool for NT with lots of links to other articles.

Collapse -

by turkyman In reply to

This applies to migration to a 2003 environment. We have done an in-place upgrade to the existing domain.

Collapse -

by CG IT In reply to NT 4 security policies an ...

There are a bunch of Microsoft Help & Support articles on migrating, upgrading from NT to W2003 with Active Directory. see article 325878 ACL's and running the security configuration and anaylsis tool. This applies to servers. If your client computers still have NT security templates applied even though you are in an Active Directory environment. There are entire webcasts on this.

Collapse -

by CG IT In reply to

try the microsoft newsgroups for Windows 2003 Server. Microsoft techs frequent those boards answering questions such as yours.

Related Discussions

Related Forums