- Tue, Jan 11 2022 at 12:59 am #1564074RadimParticipantMember Points: 106Rank: 2
We have created a special account in AD called ADM1, which is a member of the Server Operator group. Also a member of Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Local Policies -> User Rights Assignment -> Force shutdown from a remote system & Shut down the system.
When I log in via RDP to the DC (Windows 2019) I am unable to restart the DC. I do not have permissions.
Command output : whoami /all
SeRemoteShutdownPrivilege Force shutdown from a remote system – Disabled 🙁
But when I type from any domain computer from elevated command prompt : shutdown -r -m \\DC2019.domain , the domain controller restart !!!
What else do I need to set to restart DC even after logging in via RDP ?
How to add to ADM1 SeRemoteShutdownPrivilege ?
Thanks for the ideas.
- Tue, Jan 11 2022 at 1:38 am #1564075Michael PietroforteKeymasterMember Points: 32,172Rank: 4
Does the shutdown option appear in the GUI? Perhaps you have the Remove and prevent access to the Shut Down, Restart, Sleep, and Hibernate commands Group policy enabled.
Can you shutdown the server from an elevated command prompt on the server with the shutdown command?
- Wed, Jan 12 2022 at 12:34 am #1564087RadimParticipantMember Points: 106Rank: 2
I have been trying different settings all week, testing and nothing – I have not been able to restart DC from Remote Desktop.
And now all of a sudden, I barely finished a post in this forum it works 🙂 Solved.
Thank you for your response.
- This reply was modified 1 week ago by Radim.
- You must be logged in to reply to this topic.