Quick GPO question.
Denes, Laszlo
Hello Everyone,
Just a silly question. We have been asked to find a way not to display last user logged in names, etc. and that is setup in the GPO. However, we get this list which I think might show because of fast user switching being on. Is there a way to not display such a list of names of people that logged in and just locked their sessions?
We have both of these configured. https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-display-last-user-name
Many thanks in advance for your time.
Regards,
Laszlo
Laszlo Denes
Technical Analyst Servers
Information Systems
The Salvation Army Toronto Grace Health Centre
650 Church Street, Toronto, ON M4Y 2G5
f: 416-925-3211
Exceptional and compassionate care for all.
Wright, John M
I find this suggestion online. I haven’t tried it myself. If I understand right, you’re already hiding the last logged on user, so in theory this should do the rest.
If you want to hide all users except the last one logged into the computer, configure the following GPO settings in Computer Configuration -> Administrative Templates -> System -> Logon:
- Enumerate local users on domain—joined computers = Disabled
- Do not enumerate connected users on domain-joined computer = Enabled
https://woshub.com/how-to-show-all-users-accounts-on-windows-10-login-screen/
--
John Wright
IT Support Specialist
1800 Old Bluegrass Avenue, Louisville, KY 40215
Please submit IT requests to Hazelwoo...@bluegrass.org
24 Hour Helpline 1.800.928.8000
CONFIDENTIALITY NOTICE: This message contains confidential information and is intended only for the individual(s) addressed in the message. If you are not the named addressee, you should not disseminate, distribute, or copy this e-mail. If you are not the intended recipient, you are notified that disclosing, distributing, or copying this e-mail is strictly prohibited.
From: ntsys...@googlegroups.com <ntsys...@googlegroups.com>
On Behalf Of Denes, Laszlo
Sent: Thursday, July 20, 2023 8:33 AM
To: ntsys...@googlegroups.com
Cc: Denes, Laszlo <lde...@torontograce.org>
Subject: [ntsysadmin] Quick GPO question.
|
This message is from an external sender. |
--
You received this message because you are subscribed to the Google Groups "ntsysadmin" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
ntsysadmin+...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ntsysadmin/YQBPR01MB102866A4A89216E40A9DA1D0BBA3EA%40YQBPR01MB10286.CANPRD01.PROD.OUTLOOK.COM.
|
[CAUTION] Do not click on links or open attachments unless you recognize the sender and know the content is safe. |
Denes, Laszlo
Hmmm looks like the group has not received this message… not sure why…
Thank you in advance for your time.
Laszlo
Laszlo Denes
Technical Analyst Servers
Information Systems
From: Denes, Laszlo <lde...@torontograce.org>
Sent: Thursday, July 20, 2023 8:33 AM
To: ntsys...@googlegroups.com
Cc: Denes, Laszlo <lde...@torontograce.org>
Subject: Quick GPO question.
Denes, Laszlo
Hammer, Erich F
I've been telling everyone they should just reboot locked, shared machines because while a second user usually works, the third or forth usually leaves the machine stuck at a permanent spinning loop login screen and the machine has to be force rebooted which is worse. I've been very disappointed with how poorly Windows (10) seems to handle fast user switching.
Anyone know the secret of actually functional fast user switching?
Thanks,
Erich
On Tuesday, October 3, 2023 at 08:05, Laszlo Denes eloquently inscribed:
>
> Hello Everyone,
>
> Just a silly question. We have been asked to find a way not to display
> last user logged in names, etc. and that is setup in the GPO. However,
> we get this list which I think might show because of fast user switching
> being on. Is there a way to not display such a list of names of people
> that logged in and just locked their sessions?
>
> https://learn.microsoft.com/en-us/windows/security/threat-protection/sec
> urity-policy-settings/interactive-logon-do-not-display-last-user-name
> curity-policy-settings/interactive-logon-do-not-display-last-user-name>
> Many thanks in advance for your time.
>
> Regards,
>
> Laszlo
>
> Laszlo Denes
>
> Technical Analyst Servers
>
> Information Systems
>
> The Salvation Army Toronto Grace Health Centre
>
> 650 Church Street, Toronto, ON M4Y 2G5
>
> t: 416-925-2251 ext. 214
>
> f: 416-925-3211
>
>
> www.torontograce.org <http://www.torontograce.org/>
>
> <https://www.facebook.com/torontogracehealthcentre>
> <https://twitter.com/torontogracehc>
> <https://www.linkedin.com/company/toronto-grace-health-centre>
> <https://www.instagram.com/torontogracehealthcentre/>
Adrian Tiersch (adi15)
Wilson, Justin
These Group Policy settings should resolve the issue. If this is based off of Intune management, I can attempt to find the ADMX rules that would apply.
Interactive logon: Display User information when the session is locked -> Disabled
Interactive logon: Don't display username at sign-in -> Enabled
Thank you,
Justin R Wilson
Systems Administrator
Patrick Henry Local Schools
6-900 State Route 18
Hamler, Ohio 43524
Never let fear take control, it only reduces an individuals full potential
--
You received this message because you are subscribed to the Google Groups "ntsysadmin" group.
To unsubscribe from this group and stop receiving emails from it, send an email to ntsysadmin+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/ntsysadmin/e7652e25-9aed-40e4-bb3e-6a53d133484cn%40googlegroups.com.
Jim Behning
--
You received this message because you are subscribed to the Google Groups "ntsysadmin" group.
To unsubscribe from this group and stop receiving emails from it, send an email to ntsysadmin+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/ntsysadmin/DM8PR04MB78932E63D9D18D5C1968C395CCC4A%40DM8PR04MB7893.namprd04.prod.outlook.com.
Denes, Laszlo
Sounds good will look into it… cheers
Thank you in advance for your time.
Laszlo
Laszlo Denes
Technical Analyst Servers
Information Systems
t: ext. 214
--
You received this message because you are subscribed to the Google Groups "ntsysadmin" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
ntsysadmin+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/ntsysadmin/e7652e25-9aed-40e4-bb3e-6a53d133484cn%40googlegroups.com.
Denes, Laszlo
Fantastic we have Intune so might go that way first. Cheers
Can you share the Intune items you configured by any chance… as we just started using it
Thank you in advance for your time.
Laszlo
Laszlo Denes
Technical Analyst Servers
Information Systems
t: ext. 214
From: ntsys...@googlegroups.com <ntsys...@googlegroups.com>
On Behalf Of Wilson, Justin
Sent: Tuesday, October 3, 2023 12:08 PM
To: ntsys...@googlegroups.com
Subject: Re: [ntsysadmin] Re: Do not display user name on left side (fast user switching)
Hello All;
These Group Policy settings should resolve the issue. If this is based off of Intune management, I can attempt to find the ADMX rules that would apply.
Interactive logon: Display User information when the session is locked -> Disabled
Interactive logon: Don't display last signed-in -> Enabled
Interactive logon: Don't display username at sign-in -> Enabled
Thank you,
To view this discussion on the web visit https://groups.google.com/d/msgid/ntsysadmin/CAHiENFH%3Ddy8MDHFOPS-YJsAObFWJ6e%2BMSiZC31P%2BBX%3D8p0eZng%40mail.gmail.com.
Melvin Backus
+1 for Lithnet. Very flexible and extremely easy to manage.
--
There are 10 kinds of people in the world...
those who understand binary and those who don't.
¯\_(ツ)_/¯
From: ntsys...@googlegroups.com <ntsys...@googlegroups.com> On Behalf Of Adrian Tiersch (adi15)
Sent: Tuesday, October 3, 2023 11:47 AM
To: ntsysadmin <ntsys...@googlegroups.com>
Wilson, Justin
You can import the same ADMX/GPO policies inside of Intune/Endpoint Manager. You will have to create a Configuration Profile to have the settings in place.
Steps Inside of Link:
https://www.anoopcnair.com/configure-interactive-logon-message-for-users-using-intune/
From here you can apply the same settings inside of GPO to Intune.
Thank you,
Justin R Wilson
Systems Administrator
Patrick Henry Local Schools
6-900 State Route 18
Hamler, Ohio 43524
Never let fear take control, it only reduces an individuals full potential
To view this discussion on the web visit https://groups.google.com/d/msgid/ntsysadmin/YQBPR01MB10286A2B9F39EB4D44BF3A534BAC4A%40YQBPR01MB10286.CANPRD01.PROD.OUTLOOK.COM.
Denes, Laszlo
Fantastic cheers
Thank you in advance for your time.
Laszlo
Laszlo Denes
Technical Analyst Servers
Information Systems
t: ext. 214
From: ntsys...@googlegroups.com <ntsys...@googlegroups.com>
On Behalf Of Wilson, Justin
Sent: Tuesday, October 3, 2023 2:02 PM
To: ntsys...@googlegroups.com
Subject: Re: [ntsysadmin] Re: Do not display user name on left side (fast user switching)
Hello;
You can import the same ADMX/GPO policies inside of Intune/Endpoint Manager. You will have to create a Configuration Profile to have the settings in place.
Steps Inside of Link:
https://www.anoopcnair.com/configure-interactive-logon-message-for-users-using-intune/
Thank you,
To view this discussion on the web visit https://groups.google.com/d/msgid/ntsysadmin/CAHiENFFx5tUULn2z85V1qYrreV09O%3D_2q8UyFR-Qv1XV%3DG0h5Q%40mail.gmail.com.