Active Directory

Require Windows 98 Clients to Logon to the Domain

How can I require Windows 98 clients to logon to the domain instead of pressing “cancel” at the welcome screen?

By default Windows 9x doesn’t require a valid network username and password combination for a user to bypass the logon and gain access to the local machine. This functionality can be changed to require validation by the network before allowing access.

Actually there are 2 ways in which you can do it:

Sponsored Content

What is “Inside Microsoft Teams”?

“Inside Microsoft Teams” is a webcast series, now in Season 4 for IT pros hosted by Microsoft Product Manager, Stephen Rose. Stephen & his guests comprised of customers, partners, and real-world experts share best practices of planning, deploying, adopting, managing, and securing Teams. You can watch any episode at your convenience, find resources, blogs, reviews of accessories certified for Teams, bonus clips, and information regarding upcoming live broadcasts. Our next episode, “Polaris Inc., and Microsoft Teams- Reinventing how we work and play” will be airing on Oct. 28th from 10-11am PST.

Method #1:

You need to set a system policy by creating a CONFIG.POL file using POLEDIT.EXE which comes on the Win9x CD and put the file in the NETLOGON directory of the domain controller server (if you have more than one you need to manually copy the file to the same location on all DCs). The path is: %systemroot%\system32\repl\scripts\export

  1. Go to your Win98 CD and navigate to X:\tools\reskit\netadmin\poledit\poledit.exe

(where X is the drive letter of your CD). Run poledit.exe.

Note: Make sure you use the version found on the Win98 CD and NOT the one provided with W2K!

  1. From the Options menu go to Policy Templates and Add the Windows.adm template if it isnt showing already.

  1. Go to the File menu, then choose New Policy.

  1. Double click into Default Computer.
  2. Drill down through Win98 Network, Logon. Tick Require Validation from network to logon.

  1. You can also add a banner warning users not to attempt to logon if they dont have the correct username and password or a capital punishment warning…

  1. Click down to the Update entry. Check Remote Update. Set Update Mode to Automatic.

  1. Go to File | Save As CONFIG.POL and copy to the NETLOGON share which is actually the  %systemroot%\system32\repl\scripts\export folder. Make sure you copy it to the same location on all DCs (PDC and BDC).

Method #2:

  1. Open your registry and find the key below:
HKEY_LOCAL_MACHINE\Network\Logon
  1. Create a new DWORD value, or modify the existing value called “MustBeValidated” and set it to equal “1” to require successful authentication.
  2. Restart Windows for the change to take effect.
  3. Your machine must be part of a Windows domain for this tweak to work, as the user must be authenticated by the network.

Links

Windows 2000 Deployment Planning Guide

 To join a domain

Error Message “Network Name Is No Longer Available” Joining Windows XP Domain – 293403

Related Topics:

External Sharing and Guest User Access in Microsoft 365 and Teams

This eBook will dive into policy considerations you need to make when creating and managing guest user access to your Teams network, as well as the different layers of guest access and the common challenges that accompany a more complicated Microsoft 365 infrastructure.

You will learn:

  • Who should be allowed to be invited as a guest?
  • What type of guests should be able to access files in SharePoint and OneDrive?
  • How should guests be offboarded?
  • How should you determine who has access to sensitive information in your environment?

Sponsored by:

 
Live Webinar: Active Directory Security: What Needs Immediate Priority!Live on Tuesday, October 12th at 1 PM ET

Attacks on Active Directory are at an all-time high. Companies that are not taking heed are being punished, both monetarily and with loss of production.

In this webinar, you will learn:

  • How to prioritize vulnerability management
  • What attackers are leveraging to breach organizations
  • Where Active Directory security needs immediate attention
  • Overall strategy to secure your environment and keep it secured

Sponsored by: