Upcoming Webinar
Cayosoft Shows How Forest Recovery Tech Addresses Survey Issues
Join this webinar and not only learn about what your peers are doing, but also learn about a new patent-pending modern approach to AD forest recovery from Cayosoft.
New episode!
The Scoop on Loop: The Latest Innovations Directly From Microsoft!
Darrell Webster speaks to Rebecca Keys, a Program Manager from the Microsoft Loop team.
Turn Data Protection into an MRR Growth Engine
Security for your customers, revenue for your MSP practice. Access key insights on how to scale your practice with SkyKick’s new eGuide.
MSP eGuide to Package, Sell and Deliver M365 Security Services
Based on input from our top-performing MSPs, SkyKick prepared the MSP Guide to help you navigate the security landscape.

Require Windows 98 Clients to Logon to the Domain

How can I require Windows 98 clients to logon to the domain instead of pressing “cancel” at the welcome screen?

By default Windows 9x doesn’t require a valid network username and password combination for a user to bypass the logon and gain access to the local machine. This functionality can be changed to require validation by the network before allowing access.
Actually there are 2 ways in which you can do it:

Method #1:

You need to set a system policy by creating a CONFIG.POL file using POLEDIT.EXE which comes on the Win9x CD and put the file in the NETLOGON directory of the domain controller server (if you have more than one you need to manually copy the file to the same location on all DCs). The path is: %systemroot%\system32\repl\scripts\export

Go to your Win98 CD and navigate to X:\tools\reskit\netadmin\poledit\poledit.exe

(where X is the drive letter of your CD). Run poledit.exe.
Note: Make sure you use the version found on the Win98 CD and NOT the one provided with W2K!

From the Options menu go to Policy Templates and Add the Windows.adm template if it isn‘t showing already.

Go to the File menu, then choose New Policy.

Double click into Default Computer.
Drill down through Win98 Network, Logon. Tick Require Validation from network to logon.

You can also add a banner warning users not to attempt to logon if they dont have the correct username and password or a capital punishment warning…

Click down to the Update entry. Check Remote Update. Set Update Mode to Automatic.

Go to File | Save As CONFIG.POL and copy to the NETLOGON share which is actually the %systemroot%\system32\repl\scripts\export folder. Make sure you copy it to the same location on all DCs (PDC and BDC).

Method #2:

Open your registry and find the key below:

HKEY_LOCAL_MACHINE\Network\Logon

Create a new DWORD value, or modify the existing value called “MustBeValidated” and set it to equal “1” to require successful authentication.
Restart Windows for the change to take effect.
Your machine must be part of a Windows domain for this tweak to work, as the user must be authenticated by the network.

Links

Windows 2000 Deployment Planning Guide

To join a domain
Error Message “Network Name Is No Longer Available” Joining Windows XP Domain – 293403

by Daniel Petri
Jan 7, 2009

Renowned as the creator of the acclaimed Petri IT Knowledgebase back in 1999 Daniel Petri has become a distinguished figure in the IT realm, recognized for delivering reliable, expertise-driven content. This website - www.petri.com - not only embodie...

Petri.com’s New Active Directory Outage and Disaster Recovery Survey

Feb 15, 2024
Apr 16, 2024
Get-ADComputer: The PowerShell Command for Managing Active Directory Computers

Nov 15, 2023
Essential Guide to Mastering Get-ADGroupMember (AD User Management)

Oct 12, 2023

Take our survey

PETRI NEWSLETTERS

Join Petri Insider

Create a free account today to participate in forum conversations, comment on posts and more.