Re: Local Admin Rights -> but no right to change the System Time?
From: Steven L Umbach (n9rou_at_no-spam.ameritech.net)
Date: 03/25/04
- Next message: Steven L Umbach: "Re: Remotely accessing Event Viewer"
- Previous message: Steven L Umbach: "Re: Terminal Services Policy"
- In reply to: Reinhard Mader: "Local Admin Rights -> but no right to change the System Time?"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 24 Mar 2004 22:05:42 -0600
It is difficult to impossible to restict a local administrator who knows the
power of the acount. The setting you are configuring is a machine policy, so
be sure that the computer is in the scope of influence of the GPO and look
at effective settings in the Local Security Policy to see if the policy is
being propagated to be what you expect. --- Steve
"Reinhard Mader" <edv-guru@no-spam-gmx.at> wrote in message
news:eCF08FeEEHA.2408@TK2MSFTNGP10.phx.gbl...
> Is this possible?
>
> I addes in my domain a user to the Local Administrator Group; because
there
> is some software running that needs administrator rights. But it should
not
> be possible for the User to change the System Time.
>
> In the Default Domain Policy i gave the Rights for Changing System Time
only
> Domain Admins. But the User(s) can still change the System time (because
> they're in the Local Admin Group).
>
> Is there a reason for my Problem?
>
> Many Thanks for Help
>
> Reinhard
>
>
- Next message: Steven L Umbach: "Re: Remotely accessing Event Viewer"
- Previous message: Steven L Umbach: "Re: Terminal Services Policy"
- In reply to: Reinhard Mader: "Local Admin Rights -> but no right to change the System Time?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
