How to use psexec with non-domain machine.

I use psexec daily and have for a long time. It has has never worked with computers which are not in the domain until now. I have only tried this with Windows XP.

Under Administrative Tools:
LOCAL SECURITY SETTINGS
LOCAL POLICIES
SECURITY OPTIONS
Network Access: Sharing and security model for local
accounts.

Change from "Guest Only" to "Classic"

Both of these commands now work!

psexec \\10.1.2.3 -u 10.1.2.3\administrator -p localpass cmd

net use j: \\10.1.2.3\c$ /user:10.1.2.3\administrator localpass

Update: 10/24/12
Psexec worked with a Windows 8 machine not in the domain. I only had to disable the firewall.

Active Directory failed logon auditing.

I need to see failed logon attempts and account lockouts in the event log. This was somehow recently disabled. To enable, edit the Default Domain Controllers Policy, NOT the Default Domain Policy.

Computer Configuration / Policies / Windows Settings / Security Settings / Audit Policy

Policy	Setting
Audit account logon events	Failure
Audit account management	Success
Audit logon events	Failure

If you are troubleshooting account lockouts, use EventCombMT!

Active Directory failed logon auditing II