daks

Asked: 2014-05-23 04:53:30 +0800 CST2014-05-23 04:53:30 +0800 CST 2014-05-23 04:53:30 +0800 CST

Non-admin users can't run MMC on Windows Server 2008 domain controller

I have created some delegated privileges for IT administrators. One of the groups of people has some Active Directory permissions but is not server administrators or domain administrators. They also are allowed to connect with remote desktop on servers, domain controllers included.

When they connect with remote desktop on a DC running Windows 2008 R2 Enterprise edition, there is no problem. When they connect on a DC running Windows 2008 R2 Standard edition, they can't run MMC, UAC asks for a privilege escalation, and when password is typed, there is an error message saying something like (translation from French) "Logon Failure: The user has not been granted the requested logon type to the computer".

I just recently discovered the problem, and the only difference I see between the DCs are the Windows Server edition: Enterprise or Standard, but there may be others.

Has anyone an idea on why I have this problem? Or how to solve it? Or at least how to debug it?

Thanks

Non-admin users can't run MMC on Windows Server 2008 domain controller

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

Non-admin users can't run MMC on Windows Server 2008 domain controller

0 Answers