Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

Users Cannot Connect Without Logon Local Permissions


View products that this article applies to.

More information

The only time the Log on Locally right is not granted by default to everyone, is when Terminal Server is installed as a BDC.

If the Terminal Server is installed as a PDC or Member Server in a domain, or if it is installed as a standalone server in a workgroup, the Everyone group gets Log on Locally rights by default.

↑ Back to the top


Symptoms

If a Terminal Server is installed in the domain as a backup domain controller (BDC), it will inherit the domain user rights from an existing Windows NT primary domain controller (PDC). Because of this, domain users will not have the right to log on locally. The affect is to deny everyone, except administrators, the right to connect through the Terminal Server Client.

If users do not have the right to log on locally to the Terminal Server, they receive the following message:
The local policy of this system does not permit you to log on interactively.

↑ Back to the top


Cause

This behavior is by design.

↑ Back to the top


Keywords: KB187166, kbnofix, kbbug

↑ Back to the top

Article Info
Article ID : 187166
Revision : 6
Created on : 2/27/2007
Published on : 2/27/2007
Exists online : False
Views : 474