The error ‘The connection was denied because the user account is not authorized for remote login’ typically occurs when the user account that you are using to remotely connect to the target system doesn’t have sufficient permissions. This error has occurred to many users in the past as well and it seems like Windows 10 is no exception to it. Upon trying to establish a connection, users have reported that they are prompted with the said error message.
Remote Desktop can be utilized for different things such as troubleshooting errors on a target system etc, however, the feature itself has a number of errors. To circumvent this particular issue, you can follow the solutions that we have given down below.
What causes the ‘The Connection was Denied Because the User Account is not Authorized for Remote Login’ Error on Windows 10?
The cause of the error is in the error message itself that is —
- Insufficient permissions: The error pops up when your user account doesn’t have sufficient permissions to establish a connection with the target host.
- RD service: In some cases, the issue can also be if your Remote Desktop service has the wrong Log On user configured.
With that said, you can deal with the error by applying the following workarounds. Make sure to use an administrator account while implementing the given solutions.
Solution 1: Creating a New Security Group
In order to fix the issue, you might want to create a new security group whose members will have the power to establish a Remote Desktop connection. Here’s how to do it:
- Press Windows Key + R to open Run.
- Type in ‘secpol.msc’ and press Enter.
- Navigate to Local Policies > User Rights Assignment.
- From the list of policies, locate Allow log on through Remote Desktop Services and double-click it.
Local Security Policy - If there’s no Remote Desktop Users group under Administrators, follow the below instructions. If you already have one, skip to the next solution.
- Click Add User or Group and enter Remote Desktop Users under ‘Enter the object names to select’.
Creating Remote Desktop Users Group - Hit OK.
- Restart your system for it to take effect or you can just enter the following command in an elevated command prompt:
gpupdate /force
Solution 2: Giving Access to your User Account
In some cases, if the user account that you are using to establish a Remote connection isn’t a member of the Remote Desktop Users group, you will be prompted with the said error. In such a scenario, you will have to add it in the Remote Desktop Users group. Here’s how to do that:
- Press Winkey + R to open Run.
- Type in lusrmgr.msc and press Enter.
- Click on Users and then double-click your user account.
- Switch to the Member Of tab.
User Groups - If there’s no Remote Desktop Users group under Administrators, click Add.
- Select Advanced and then click Find now.
- From the list, double-click Remote Desktop Users and then click OK.
Adding User Account to Remote Desktop Users Group - Your user account is now a member of the Remote Desktop User group.
- Try establishing a connection now.
Solution 3: Checking Remote Desktop Service Log On User
If your Remote Desktop Service is using Local Service instead of Network Service as the log on user, it can also cause the issue to occur. You can fix this by changing it to Network Service. Here’s how to do it:
- Press Windows Key + R to open Run.
- Type in ‘services.msc‘ and press Enter.
- Locate Remote Desktop Service and then double-click it.
Remote Desktop Service - Switch to the Log On tab.
- If the Local Service account is selected, you’ll have to change it. Click Browse.
- Select Advanced and then click Find now.
- From the list, double-click Network Service and then click OK.
Changing Remote Desktop Service Log On User - Restart the service by right-clicking the service and selecting Restart.
