| Author |
Message |
Guest
|
 Posted:
Wed Dec 29, 2004 4:07 am Post subject:
Service Security |
|
|
Can anyone suggest a way to allow certain users to start and stop particular
services on a server?
I have a group of developers who I wish not to grant administrative access
to, but require the ability to bounce their applications which are service
based. I've looked in the local security policy but do not see anything
that stands out as being able to do this.
Thanks |
|
| Back to top |
|
 |
neo [mvp outlook]
Guest
|
| Posted:
Wed Dec 29, 2004 6:09 am Post subject:
Re: Service Security |
|
|
I would use the Security Template manager to create an *.inf file and then
apply said inf via secedit or the Security Configuration and Analysis
snapin. (All done through MMC)
<WilliamBeau> wrote in message
news:%23VSFvmS7EHA.2788@TK2MSFTNGP15.phx.gbl...
| Quote: | Can anyone suggest a way to allow certain users to start and stop
particular
services on a server?
I have a group of developers who I wish not to grant administrative access
to, but require the ability to bounce their applications which are service
based. I've looked in the local security policy but do not see anything
that stands out as being able to do this.
Thanks
|
|
|
| Back to top |
|
|
Roger Abell
Guest
|
| Posted:
Wed Dec 29, 2004 1:15 pm Post subject:
Re: Service Security |
|
|
answered in other NG
In future, when appropriate, please consider cross posting
by just listing multiple NGs on one posting, rather than using
multiple posting, as cross-posts allow all to see all replies
and are also more convenient for you to follow.
--
Roger Abell
Microsoft MVP (Windows Security)
MCSE (W2k3,W2k,Nt4) MCDBA
<WilliamBeau> wrote in message
news:%23VSFvmS7EHA.2788@TK2MSFTNGP15.phx.gbl...
| Quote: | Can anyone suggest a way to allow certain users to start and stop
particular
services on a server?
I have a group of developers who I wish not to grant administrative access
to, but require the ability to bounce their applications which are service
based. I've looked in the local security policy but do not see anything
that stands out as being able to do this.
Thanks
|
|
|
| Back to top |
|
|
Karl Levinson, mvp
Guest
|
| Posted:
Thu Dec 30, 2004 9:47 am Post subject:
Re: Service Security |
|
|
Agreed.
It's easier to do this if you create this template on a computer that has
the services in question on it.
If you don't have Active Directory as an automated means to push out the
settings to multiple computers, you can alternatively use a batch file that
uses the SECEDIT command to import the template to a database and apply the
settings in the database to the computer.
"neo [mvp outlook]" <neo@online.mvps.org> wrote in message
news:ebTkmqT7EHA.2192@TK2MSFTNGP14.phx.gbl...
| Quote: | I would use the Security Template manager to create an *.inf file and then
apply said inf via secedit or the Security Configuration and Analysis
snapin. (All done through MMC)
WilliamBeau> wrote in message
news:%23VSFvmS7EHA.2788@TK2MSFTNGP15.phx.gbl...
Can anyone suggest a way to allow certain users to start and stop
particular
services on a server?
I have a group of developers who I wish not to grant administrative
access
to, but require the ability to bounce their applications which are
service
based. I've looked in the local security policy but do not see anything
that stands out as being able to do this.
Thanks
|
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in