Server 2022 - I am getting the message "the sign in method you're trying to use isn't allowed" when trying to log in a user that is not an administrator. how do i fix this?

Hello JP Timpano,

Thank you for posting on the Microsoft Community Forum.

May I know if the server 2022 is in workgroup or in one domain?

And would you please tell us you sign in the server 2022 locally or remotely?

To fix this issue in Windows Server 2022, you can follow these steps:

1. Log in to the server using an administrator account.
2. Open the Group Policy Management Editor by typing "gpedit.msc" in the Run dialog box and pressing Enter.
3. In the Group Policy Management Editor, navigate to "Computer Configuration" > "Windows Settings" > "Security Settings" > "Local Policies" > "User Rights Assignment".
4. We can check "Allowed log on locally" if you sign in locally or "Allow logon through Remote Desktop Services" if you sign in remotely, there should be Administrators groups and the user account (or this user group) now you are using.

If your server 2022 is in one domain, and you may check the domain GPO that has such settings above.

Also, make sure "Computer Configuration" > "Windows Settings" > "Security Settings" > "Local Policies" > "User Rights Assignment" > the user account and the user group and Administrators group and domain administrators are not in the "Deny log on locally" if you sign in locally or "Deny logon through Remote Desktop Services" if you sign in remotely.

I hope you the information above is helpful.

If you have any questions or concerns, please do not hesitate to let us know.

Best Regards,

Daisy Zhou

I have set the GPO as noted, no effect. Users can sign in locally if they have a local ID (most do not). This error: "The sign-in method you're trying to use isn't allowed. For more info, contact your network administrator." Is occurring when using non-admin domain accounts. If I set the domain account to admin they can login. This is only occurring in my Server 2022 sites only. My Server 2019 sites do not have this issue. This started occurring after the last Server update to 2022.

Please help.

Error: The sign in method you are trying to use is not allowed please contact your network administrator.

 The fix which I found for this is Under domain name dbcserver.com > Default domain controllers policy The Link Enabled option must be set to No. Similarly the link enabled option for Default domain policy must be No. After this we have to either restart computer at client end or do a gpupdate /force and the problem will be solved.

Hello JP Timpano,

Good day!

Now you can not sign in locally, an I right? If so, you can check:

1.On one problematic, open local group policy (that is open gpedit.msc) and navigate to "Computer Configuration" > "Windows Settings" > "Security Settings" > "Local Policies" > "User Rights Assignment" >"Allowed log on locally", there should be the user account or group with this user account in the list.

2.If the user account or group with this user account is not in the list "Allowed log on locally" after you check the local group policy and "Allowed log on locally" setting is greyed out and you can not make any changes, you can go to domain controller.

Open domain group policy (that is open gpmc.msc and click enter). Edit the "Default Domain Policy" GPO and navigate to "Computer Configuration" > "Windows Settings" > "Security Settings" > "Local Policies" > "User Rights Assignment" >"Allowed log on locally", there should be the user account or group with this user account in the list. If no, you can add the user account or group with this user account.

Best Regards,
Daisy Zhou

My questions and issues on this subject were resolved. Thank you.