I had a workmate with issues using privilege escalation this morning, he kept getting an error like this:
I had a workmate with issues using privilege escalation this morning, he kept getting an error like this:
RUNAS ERROR: Unable to run - cmd
1327: Logon failure: user account restriction. Possible reasons are blank passwords not allowed, logon hour restrictions, or a policy restriction has been enforced.
After googling around a bit, most of the responses were about group policy or other restrictions causing issues, but it was actually much simpler!
The user’s password has expired. This commonly occurs for users that don’t login interactively very often, but use runas and the command prompt for most things.
I reset his password and once he logged into a machine via RDP to do a password reset, he was good to go.