From: SMTP%"dave@silcom.com" 25-SEP-1997 16:41:03.26 To: ntdev@atria.com CC: Subj: Re: Security Question Return-Path: owner-ntdev@atria.com Received: by arisia.gce.com (UCX V4.1-12C, OpenVMS V7.1 VAX); Thu, 25 Sep 1997 16:35:06 -0400 Received: from gw.atria.com (gw.atria.com [192.88.237.2]) by bort.mv.net (8.8.5/mem-951016) with SMTP id TAA27911 for ; Wed, 24 Sep 1997 19:55:17 -0400 (EDT) Received: by gw.atria.com id Wed, 24 Sep 1997 13:36:41 -0400 Received: from acme.sb.west.net by gw.atria.com id Wed, 24 Sep 1997 13:36:35 -0400 Received: from host5 (host3.miramarsys.com [205.180.87.4]) by acme.sb.west.net (8.8.3/8.6.12) with ESMTP id KAA28396 for ; Wed, 24 Sep 1997 10:36:05 -0700 (PDT) Message-ID: <34294F1A.C3B7FA9A@silcom.com> Date: Wed, 24 Sep 1997 10:34:18 -0700 From: Dave Cox Reply-To: dave@silcom.com X-Mailer: Mozilla 4.01 [en] (WinNT; I) MIME-Version: 1.0 To: ntdev@atria.com Subject: Re: Security Question X-Priority: 3 (Normal) References: <34293F04@msgate.bassinc.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-ntdev@atria.com Precedence: bulk Which part of the behavior is troubling you? Autologon is a documented feature. It's configured in the registry path: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon "AutoAdminLogon" = "1" "DefaultUserName" = "" "DefaultDomainName" = "" "DefaultPassword" = "" If the account has a password, you must supply it, and the account will be logged on every time the machine is booted or the user is logged off. I suppose this aspect is what is keeping you from logging-on another user. If the account has no password, then the auto-logon will occur only once. Searching the MSDN CD, I found 4 references to "AutoAdminLogon" in resource kit docs, and many others in the knowledge base. Dave Cox Miramar Systems Thomas, Scott wrote: > > While this is not strictly a development question, I am hoping that > someone in this group may be able to shed some light on a possible NT > security issue. We have a NT workstation system that will automatically > login at boot up without stopping at the normal prompt. > Also, when the user logs off the system will automatically re-login as > the same user. Fortunately it logs in as the needed user, but no other > user ID can be entered. You can lock the screen and then enter another > username and password when unlocking the screen, BTW is > required here, and it will tell you that it will log out the current user > before logging in the new user, but when all is said and done the system > is back to square 1 being at the desktop of the automatically logged in > user. > > My question is this, Has anyone seen this kind of behavior before, and > how can it be fixed? The system is a NT 4.0 workstation with SP3 > installed. > > This problem is quite interesting since more then one MS document states > that there is no way to log onto an NT system without doing > first. > > Any and all help and suggestions will be greatly appreciated. > > Scott A. Thomas > BASS, Inc. > Dayton OH > thomas@dayton.bassinc.com > (937)293-3810 x7320 > (937)293-6163 - FAX > > - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - > [ To unsubscribe, send email to ntdev-request@atria.com with body > UNSUBSCRIBE (the subject is ignored). ] - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - [ To unsubscribe, send email to ntdev-request@atria.com with body UNSUBSCRIBE (the subject is ignored). ]