Help! How to fix Windows 2000 Pro Login Security hole!!!

drizzle
Offline
Senior Member

20 years 1 month ago #5397 by drizzle

Replied by drizzle on topic Re: Help! How to fix Windows 2000 Pro Login Security hole!!!

To edit the local machine policy follow these steps:

Start --> Run --> type "gpedit.msc" --> Local Computer Policy --> Computer Configuration --> Windows Settings --> Security Settings --> Local Policies --> Security Options --> Open: Interactive Logon: Number of previous logons to cache

Change the setting to 0 (zero) to disable the caching of logon credentials.

You can do the same thing in AD. It is the same key for AD. Remember that if your DC goes down, the users can not work/logon locally.

We disable cached credentials on all machines except laptops here at my office.

ernestx
Topic Author
Offline
New Member

20 years 1 month ago #5407 by ernestx

Replied by ernestx on topic Re: Help! How to fix Windows 2000 Pro Login Security hole!!!

Thank alot! i was try let you know.

ernestx
Topic Author
Offline
New Member

20 years 1 month ago #5408 by ernestx

Replied by ernestx on topic Re: Help! How to fix Windows 2000 Pro Login Security hole!!!

By the way.. Drizzle i cannot find it the ''Open: Interactive Logon:''?

Nitix
Offline
Junior Member

20 years 1 month ago #5411 by Nitix

Replied by Nitix on topic Re: Help! How to fix Windows 2000 Pro Login Security hole!!!

there isnt "open : interactive logon"

once you under <security options > look for :

Interactive logon : Number of interactive logons to cache ( in case domain controller is not available )

the default value is set to 10 logons

change it to Zero ( Do not cache logons)

Nitish R
Systems Engineer
----||----||----||----