44
The
Interactive logon: Message text for users attempting to log on
security option setting specifies a
text message that is displayed to users when they log on. This text is often used for legal reasons, for
example, to warn users about the ramifications of misusing company information or to warn them that
their actions may be audited. The message text setting is recommended for all three environments.
Note:
Any warning that gets displayed should first be approved by the company’s legal and human
resources representatives. In addition, both the
Interactive logon: Message text for users attempting to
log on
and the
Interactive logon: Message title for users attempting to log on
settings must both be
enabled in order for either one to work properly.
Interactive logon: Message title for users attempting to log on
Member Server
Default
Legacy Client
Enterprise Client
High Security Client
Not Defined
IT IS AN OFFENSE TO
CONTINUE WITHOUT
PROPER
AUTHORIZATION
IT IS AN OFFENSE TO
CONTINUE WITHOUT
PROPER
AUTHORIZATION
IT IS AN OFFENSE TO
CONTINUE WITHOUT
PROPER
AUTHORIZATION
The
Interactive logon: Message title for users attempting to log on
security option setting allows a title
to be specified in the title bar of the window that contains the Interactive logon users see when they
log on to the system. The reasoning behind this setting is the same as that for the
Message text for
user attempting to log on
setting. Organizations that do not utilize this setting are more legally
vulnerable to trespassers who attack the network surface. Therefore, this setting is enabled in the three
environments defined in this guide.
Note:
Any warning that gets displayed should first be approved by the company’s legal and human
resources representatives. In addition, both the
Interactive logon: Message text for users attempting to
log on and Interactive logon: Message title for users attempting to log on
settings must both be
enabled in order for either one to work properly.
Interactive logon: Number of previous logons to cache
(in case domain controller is not available)
Member Server Default
Legacy Client
Enterprise Client
High Security Client
10 1 0 0
The
Interactive logon: Number of previous logons to cache (in case domain controller is not available)
security option setting determines whether a user can log on to a Windows domain using cached
account information. Logon information for domain accounts can be cached locally so that in the
event that a domain controller cannot be contacted on subsequent logons, a user can still log on. This
setting determines the number of unique users for whom logon information is cached locally.
Configuring this value to
0
disables logon caching, which is the recommended setting for all three
environments.