IT Employment

General discussion


Secondary logon on Domain Controller

By dnlemmor ·
I have edited the Default Domain Policy of our Domain
Controller (windows 2000 server). On the Computer
Settings\User Right Assignment\Log On Locally, I change
the value of the local setting to a domain user account
(not a member of the Administrator Group). I do this to
enable me to logon on the server(PDC) as a user without
administrative privilege for security reasons. After this,
I can no longer log even as an Administrator, I can only
log using the account that I have assign to the Log On
Locally. The problem is that I cannot edit the Default
Domain Policy, I can't even create, add and delete GPO's
because all of the command button of the Group Policy Tab
are disabled except the Properties. I have also disable
the Windows Installer, so I can't install Terminal
Services to remotely administer the PDC.I have also tried
the Run as service but it doesn't work also. I have successfully install the adminpak.msi in a workstation (Win2kpro) to remotely administer the PDC, when I try
to access the Active Directory Users and computer an error
occred, "Naming information cannot be located because: The
server is not operational. Contact your System
Administrator to verify that your domain is properly
configured and is currently online."
How can I
resolve this problem? And how can I log on as a user
without administrative privilege?

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

Are you logging into the domain as admin

by chris In reply to Secondary logon on Domain ...

Have you tried logging in as the administrator on the local machine instead of logging in as under your domain?

Sounds like you don't have a Domain Admin Account. You won't be able to change anything with domain user priveledges. Try just loggingon to the machine and not the domain.

Related Discussions

Related Forums