By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.
We have noticed that all of the Windows 2000 servers in our domain, with exception to the domain controllers, allow any domain user to log onto them. This is a security issue in our eyes. Is this a Microsoft flaw?
You can configure Windows 2000 server to allow or deny any user right, including "log on locally." Set it in the default domain controller policy. I agree, allowing users to sit at a console and log onto it is not good for server security.