User attempts to log on to the SecureAuth appliance console or via RDP using a domain account and receives the error below.
"Security Policies on this computer are set to display information about the last interactive logon. Windows could not retrieve this information. Please contact your network administrator for assistance."
A group policy has been applied to the SecureAuth appliance which conflicts with a local security policy setting on the appliance. This setting "DisplayLastLogonInfo" was updated in SecureAuth Version 6.4 but previous versions could be affected.
The solution is to disable the Local Security Policy setting to allow the Group Policy to take affect.
Two approaches are defined below.
Approach 1 (Recommended)
Using the Local Group Policy Editor on the SecureAuth appliance:
- Open the Local Group Policy Editor.
- In the left pane, click Computer Configuration, Administrative Templates, Windows Components, and Windows Logon Options.
- In the right pane, right-click "Display information about previous logons during user logon" and click Properties.
- To display previous logon information, check option Disabled and click OK.
- Close the Local Group Policy Editor window.
Using the Registry Editor on the SecureAuth appliance:
- Open the Start Menu, then type regedit in the search box and press Enter.
- In regedit, navigate to the location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System
- In the right pane, right-click in an empty area and click New and DWORD (32-bit) Value.
- Type DisplayLastLogonInfo as the name and press Enter.
- Right-click DisplayLastLogonInfo and click Modify.
- To no longer display last logon information, type 0 and click on OK. 1 is for the contrary.
- Close regedit.
- Restart the computer to apply the changes.