Re: Allow log on locally in Default Domain Controller Policy.

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

---

• From: "Bill Griffith" <bilgriffithspamfreehooray@xxxxxxxxxxx>
• Date: Wed, 08 Jun 2005 15:04:03 GMT

---

That is not a default install. The default install has Account Operators,
Administrators, Backup Operators, Print Operators and Server Operators in
the list to Allow log on locally.
Your config is not recommended and is a security problem. I would change it
if I were you.

Bill Griffith

"Rebsu" <Rebsu@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:BD38617E-5A13-4A21-A5D1-A7EB4A732294@xxxxxxxxxxxxxxxx
>I was looking over our group policy settings while studying for 70-292 and
> noticed that the group Domain Users is included in the Allow log on
> locally
> setting in the Default Domain Controller Policy. Is this ok or dangerous?
> Is it necessary? DCs are 2003 standard.


.

---

• References:
  • Allow log on locally in Default Domain Controller Policy.
    • From: Rebsu

• Prev by Date: Re: Certification
• Next by Date: Re: Certification
• Previous by thread: Allow log on locally in Default Domain Controller Policy.
• Next by thread: Re: Allow log on locally in Default Domain Controller Policy.
• Index(es):
  • Date
  • Thread

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Certification  > microsoft.public.cert.exam.mcse  > 2005-06