Re: Trying to configure group policies on a stand alone server.
- From: "Ace Fekay [MVP]" <PleaseAskMe@xxxxxxxxxxxxxx>
- Date: Sun, 13 May 2007 22:32:00 -0400
In news:1179109518.871016.44580@xxxxxxxxxxxxxxxxxxxxxxxxxxxx,
ttysnoop@xxxxxxxxx <ttysnoop@xxxxxxxxx> typed:
I'm trying to run a service as a user account on a stand-alone Win2k
server. When I try to run the service using 'net start srvname' i get:
"System error 5 has occurred.
Access is denied."
I quick google lead me to this KB article that i'm 90% sure is my
current problem: http://support.microsoft.com/?kbid=256299
It's resolution involves using 'Active Directory Users and Computers'
to reconfigure the permissions for the user and/or its group. When I
try to run dsa.msc I get an error message, 'To manage users and groups
on this computer, use local users and groups. To manage users, groups
and computers in a domain, log on as a user with Domain Administration
rights.'
'Local Users and Groups' doesn't seem to have any advanced permissions
tabs or ability to do much except add/remove users and change their
groups.
So my question is how do i edit group/user policies and add 'service
read' privileges to a user/group on a server without a domain
controller?
Thanks for any info, It's probably a simple answer involving a non-
default tool but I couldn't find anything on google.
-Zim
It really doesn't work that way with stand alone machines. However you can
get into the machine's local GP by typing 'gpedit.msc' and apply local
policy settings to local users only on a stand alone machine. The local
security policy can be accessed by going to Start, Administrative Tools,
Local Security Policy.
What type of settings were you looking for or expecting in a local user
properties compared to a domain user properties?
--
Regards,
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Directory Services
Microsoft Certified Trainer
Infinite Diversities in Infinite Combinations
Having difficulty reading or finding responses to your post?
Instead of the website you're using, try using OEx (Outlook Express
or any other newsreader), and configure a news account, pointing to
news.microsoft.com. Anonymous access. It's free - no username or password
required nor do you need a Newsgroup Usenet account with your ISP. It
connects directly to the Microsoft Public Newsgroups. OEx allows you
o easily find, track threads, cross-post, sort by date, poster's name,
watched threads or subject. It's easy:
How to Configure OEx for Internet News
http://support.microsoft.com/?id=171164
"Quitting smoking is easy. I've done it a thousand times." - Mark Twain
.
- Follow-Ups:
- References:
- Trying to configure group policies on a stand alone server.
- From: ttysnoop
- Trying to configure group policies on a stand alone server.
- Prev by Date: Trying to configure group policies on a stand alone server.
- Next by Date: Re: Trying to configure group policies on a stand alone server.
- Previous by thread: Trying to configure group policies on a stand alone server.
- Next by thread: Re: Trying to configure group policies on a stand alone server.
- Index(es):
Relevant Pages
|
