Skip to main content
< All Topics
Print

GPO: Configure Interactive Logon Warning Message

Posted
Updated
Bychris_fry

Scope

This policy applies to:

  • All domain-joined Windows computers (or specify OU/group)

Policy Location

Computer Configuration
 └── Policies
     └── Windows Settings
         └── Security Settings
             └── Local Policies
                 └── Security Options

Settings to Configure

  1. Interactive logon: Message title for users attempting to log on
    • Set to:
      Example: WARNING: Authorized Use Only
  2. Interactive logon: Message text for users attempting to log on
    • Set to a custom message, for example:
This system is for the use of authorized users only. 
Individuals using this computer system without authority, or in excess of their authority, 
are subject to having all of their activities on this system monitored and recorded.By using this system, you consent to such monitoring and recording. 
Unauthorized use may result in disciplinary action and/or legal prosecution.

Configuration Steps

  1. Open Group Policy Management Console (GPMC)
  2. Create a new GPO or edit an existing one
    • Example name: Login Warning Banner Policy
  3. Navigate to the policy path listed above
  4. Configure the two settings:
    • Message title
    • Message text
  5. Link the GPO to the appropriate Organizational Unit (OU)
  6. Run gpupdate /force on target machines or wait for policy refresh

Best Practices

  • Keep the message concise but legally meaningful
  • Avoid overly long text that impacts usability
  • Align wording with your organization’s Acceptable Use Policy (AUP)
  • Have legal/compliance review the message before deployment

Verification

  • Log out of a test machine
  • Confirm the warning appears before the login prompt
  • Ensure formatting and readability are correct

Rollback Plan

  • Set both policy fields to Not Configured
  • Force Group Policy update
  • Confirm removal of the login banner