|
|
||||||
|
#1
12-19-04, 03:16 PM
|
|
|
|
|
Hi All,
On the Windows Server 2003 Security Guide, there are recommendations about the "User Rights Assignments" There are some rights that recommend to configure to NETWORK SERVICE, LOCAL SERVICE and "all NON-Operating System Service accounts" I want to define these configuration using GPO, when I'm trying to add these users to the GPO I can't find them (when I'm doing "Add User or Group" I see my domain users and groups) What is the meaning of NETWORK SERVICE, LOCAL SERVICE and all NON-Operating System Service accounts? How do I add them to my GPO configuration? Thanks, Nir B |
|
|
|
#2
12-19-04, 05:15 PM
|
|
|
|
|
They referenced mainly to security credentials that control permissions
access to the underlying system, NTFS in particular. They will be accessible if you access file / folder permissions via Win Explorer for example. "Nir B" wrote: [..] |
|
#3
12-19-04, 07:13 PM
|
|
|
|
|
Local Service and Network Service are two built-in accounts
that were introduced with XP and W2k3. Are you altering the GPOs using an uplevel machine or W2k? The other term "non-OS service account" refers to accounts that are not built-in to a standard install of the OS but which have been configured for use as the context in which a service is launched/run. |
|
#4
12-19-04, 09:09 PM
|
|
|
|
|
To add and clarify,
SERVICE (W2k, W2k3) NETWORK (W2k, W2k3) LOCAL SERVICE (XP, W2k3) NETWORK SERVICE (XP, W2k3) "Desmond Lee" wrote: [..] |
|
#5
12-22-04, 10:33 AM
|
|
|
|
|
Thanks all for your responses.
Yes, I'm using uplevel machine (W2k3) and as I mention I can't add local users (when I'm doing "Add User or Group" I see only my domain users and groups and not the local users) If I just do "Add User or Group" and instead of doing "Browse" I write "NETWORK SERVICE" for example, is this OK? How can I test this? (simulate NETWORK SERVICE foe example) Thanks, Nir B "Roger Abell" <mvpNOSpam> wrote in message news:1292 [..] |
|
#6
12-23-04, 11:14 PM
|
|
|
|
|
Are you sure you are trying to manage the GPO settings
when logged into an XP or W2k3 machine, and that when adding in the object picker you have check to select from Built-in security principals ? If so, they should be there to select. Keep in mind that Local Service and Network Service are not that same as the pseudo-groups named Service and Network in the user interface. |
|
|
| Similar Threads | |
| Local Service, Local System, Network Service - NTLM/Kerbos Someone please explain. SP using SQL2000 on 2003 Server When I "extend" a new Virtual site, I create a new app pool for each site I create (thats good practice apparantly). Im prompted for... |
|
| Difference between Local System, Local Service, Network Service Under the SQL Server Properties dialog (I'm using SQL Express 2005) the "Log in as: - Built-in account" lists Local System, Local Service and Network Service. What are the... |
|
| Local System vs. Local Service/Network Service accounts Hi, I hope someone could help me out on this problem: I have a Windows Services "A", and a Windows App "B" which brings up some Windows Forms. Both of them are on the same... |
|
| Window Services - Difference between Network Service, Local Service ANd Local System Account Hi All, Can any one tell me that what is the difference between Network Service, Local Service and Local System ACcount for window services ABCL |
|
| Local service accounts and network shares ok, so I kow that the local system accoutn can't get to a network share, and if you want to do that and not lose any of your other priveliges you need to run under a user... |
|
|
All times are GMT. The time now is 02:39 AM. | Privacy Policy
|
NETWORK SERVICE, LOCAL SERVICE accounts