[THIN] Re: Security Templates issue with Local GPO on Win2k Standalone.
- From: "Chris Lynch" <lynch00@xxxxxxx>
- To: <thin@xxxxxxxxxxxxx>
- Date: Thu, 13 Feb 2003 14:09:58 -0800
What is in the Application event log? Do you see any errors? Any Event =
ID
1002, or 1000? What about 1702?
Chris
-----Original Message-----
From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On =
Behalf
Of Ziots, Edward
Sent: Thursday, February 13, 2003 1:41 PM
To: 'thin@xxxxxxxxxxxxx'
Subject: [THIN] Security Templates issue with Local GPO on Win2k =
Standalone.
To the list,=20
I know this might be a little OT, but here is what I am trying to do, =
via
Local GPO on a new External DNS Server I need to put out for my
organization.=20
1) I have configured a security template which locks down the undeeded
services, and ACL's them so that only Administrators can disable them if =
so
desired.=20
2) The security template also, makes use the Restricted Groups
Functionality, in which I have added all the local accounts in which =
will
only be a member of the administrators group and no others.=20
I validated the Security template and then ran the following command =
secedit
/configure /db db.sdb /CFG template.inf /overwrite /areas GROUP_MGMT =
/log
log.log /verbose.=20
I looked at the log everything worked fine.=20
I ran secedit /Refreshpolicy machine_policy /enforce and secedit
/refreshpolicy user_policy /enforce.=20
I then go ahead and add the TSINTERNETUSER via terminal services to the
administrators group, which via local GPO being applied it should be
removed. When I reboot, the account still exists in the local =
administrators
group.=20
DO any of the GPO guru's have some suggesstions? This is an External =
Win2k
Standalone system with SP3, and all the needed hotfixes.=20
Thanks in advance,=20
Ed
*********************************************************
This Week's Sponsor - RTO Software / TScale
TScale increases terminal server capacity.=20
Get 30-40% more users per server to save $$$ and time.=20
Add users now! - not more servers. If you're using Citrix,=20
you must learn about TScale! Free 30-day eval:
http://www.rtosoft.com/Enter.asp?ID=3D79
**********************************************************
For Archives, to Unsubscribe, Subscribe or=20
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
*********************************************************
This Week's Sponsor - RTO Software / TScale
TScale increases terminal server capacity.
Get 30-40% more users per server to save $$$ and time.
Add users now! - not more servers. If you?re using Citrix,
you must learn about TScale! Free 30-day eval:
http://www.rtosoft.com/Enter.asp?ID=79
**********************************************************
For Archives, to Unsubscribe, Subscribe or
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
Other related posts:
