TONT 41743 为什么快速用户切换在域上不能使用

公务与个人生活的区别。

原文链接:https://blogs.msdn.microsoft.com/oldnewthing/20031121-00/?p=41743

Windows XP added a new feature called Fast User Switching which lets you switch between users without having to log off. But this feature is disabled if your computer is joined to a domain. Why?

Windows XP新增了一项叫『快速用户切换』的功能,可以让使用者在不同用户间切换而不必先注销,但如果当前计算机加入了域的话,这个功能就不可用,为什么呢?

There were several reasons, none of them individually insurmountable, but they added up to quite a lot of work for something IT administrators weren’t even sure they wanted. (See a previous entry on retraining costs.)

主要原因有这么几个,而且这些问题也不是完全不可逾越的,但这些问题会为IT管理员增加相当多大概是不必要的工作量。(可参考之前有篇文章里提到的、关于重新培训成本的事宜

  • How do you show all the users on the domain in the Welcome screen? You certainly don’t want a list with 10,000 names in it. (Scroll scroll scroll.)
    考虑一下你要如何在欢迎屏幕上显示所有的域用户?想必你不想见到一个有10000人的列表。(鼠标滚轮转啊转)
  • How do you check whether a user has a password? In Windows XP, the Welcome screen merely tries to log you on with a blank password. If it works, then poof! you’re in. If it doesn’t work, then it displays the password prompt. This works, but it also generates a failed password event into your security event log. Many IT administrators have a passwork lockout policy, where if you get your password wrong more than N times, your account is locked. Blank password probing would result in locked-out accounts all over the company.
    如何判断用户是否设置了密码?Windows XP的欢迎屏幕会首先尝试用空密码进行登录。如果用户正好也没有设置密码,那么duang地一下,恭喜,你登录成功了。如果用户设置过密码,那么欢迎屏幕就显示『输入密码』的提示。这种设计的确有用(译注:加快了空密码用户的登录速度),但也会(在用户设置了密码的情况下)在安全日志中留下一次登录失败的记录。许多IT管理员(在域设置中)设置了密码自动锁定策略,意思是如果你登录失败了N次,那么账户就会被自动锁定。而欢迎屏幕的这种设计会在整个公司里造成成片的锁定账户。

Those of you who have gotten Longhorn can see that Fast User Switching is now enabled on domains. New infrastructure needed to be developed to enable the feature on domains without ruining the domain administrators’ lives.

已经拿到Longhorn的人会注意到快速用户切换现在在加入域的电脑上已经可用了,不过域管理员需要启用新的域架构来使这个新功能可用,这样才不会让域管理员的日子一团糟。

发表评论

电子邮件地址不会被公开。 必填项已用*标注

 剩余字数 ( Characters available )

注:请不要在评论中插入任何链接,否则将自动被识别为垃圾评论,博主将完全看不到。

Notice: please DO NOT add any links in your comment, otherwise it would be identified as SPAM automatically.

*