ITsVISTA
Information that makes life easier when it comes to installing, managing, and using Windows Vista.
Start About FAQ Blogroll Shop

ITsVISTA KB-Link: KB954902

After a user is deleted from a role in the Authorization Manager in an Active Directory domain environment, the user can still unexpectedly access that role from a Windows Vista-based or Windows Server 2008-based client computer

Consider the following scenario:

  • You have an Authorization Manager store in an Active Directory domain environment.
  • You add a user to a role in Authorization Manager.
  • You log on to and then you log off from the domain on a Windows Vista-based or Windows Server 2008-based client computer by using the user account to that you added the role.
  • The administrator deletes the user from the role in the Authorization Manager.

In this scenario, the user still can access the role.

There is a download that resolves this issue. See Hotfixes for details.
32-bit Download: Contact Microsoft
64-Bit Download: Contact Microsoft

For more information on this issue, including potential causes, workarounds, and resolutions, see: Microsoft KB Article KB954902.

Get notified of new posts for FREE via RSS or E-mail

Subscribe to ITsVISTA!

Related Posts