May 02, 2013

How to : Enabling "Auto Logon" to Windows XP and Vista when using a Domain / Active Directory


In standalone computer which does not join any Active Directory (AD) or Windows NT domain as a member, user can configure in such as way that operating system auto login to console or desktop area after booting up.
However, if the PC is domain member and configured to logon to domain, automatic logon feature cannot be configured through graphical user interface (GUI). In Windows XP and Vista, the option for “users must enter a user name and password to use this computer” is missing, hidden and disappearing in User Account window on domain-based system, even though user belongs to local user or local admin privilege group. In a domain-joined computer, Windows XP and Windows Vista can still be set to automatically log on selected user account by configuring the settings in the registry.
Note that the user name and password credential for auto login will be saved and stored in the Windows Registry, and can be read by anybody who can physically gain access to the computer, or remotely connect to the registry by the Authenticated Users group. Hackers or malicious users can also gain access to everything that is on the computer, including any network or networks that the computer is connected to. Thus, enable and turn on automatic logon on a domain environment will severely compromise the network security.
Follow these procedure to force Windows Vista and Windows XP to skip and bypass asking user for user to select or input user name and password:
  1. Click Start, click Run, type regedit, and then click OK. In Windows Vista, simply type regedit in Start Search and hit Enter.
  2. Navigate to the following registry key:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

  3. Double-click the DefaultUserName entry, type the user name to log on with, and then click OK.
    If DefaultUserName registry value name is not found, create the new String Value (REG_SZ) with value name as DefaultUserName.
  4. Double-click the DefaultPassword entry, type the password for the user account under the value data box, and then click OK.
    If there is no DefaultPassword value, create a new String Value subkey (REG_SZ) with DefaultPassword as the value name.
    Note that if no DefaultPassword string is specified, Windows automatically changes the value of the AutoAdminLogon registry key from 1 (true) to 0 (false) to turn off the AutoAdminLogon feature.
  5. In Windows Vista, DefaultDomainName has to be specified as well, else Windows will prompt of invalid user name with user name displayed as .\username. To do so, double click onDefaultDomainName, and specify the domain name of the user account. If it’s local user, specify local host name.
    If the DefaultDomainName does not exist, create a new String Value (REG_SZ) registry key with value name as DefaultDomainName.
  6. Double-click the AutoAdminLogon entry, type 1 in the Value Data box, and then click OK.
    If there is no AutoAdminLogon entry, create a new String Value entry (REG_SZ) with AutoAdminLogon as the value name.
  7. If exist, delete the AutoLogonCount key.
  8. Quit Registry Editor.
  9. Click Start, click Restart, and then click OK.
After computer reboots and Windows XP or Vista starts, system can log on automatically to the preset or predefined user in the registry.
Powered by IT and Careez - Blog