RE:How to disable interactive logon for service accounts on W2K a nd W2K3



>I was wondering does any one know of any setting to disable interactive
>logon for service accounts on W2K and W2K3.

>Any light in this direction would be highly appreciated.

>Thanks,

>Saj

You can use security policies to restrict the interactive logon for an
account.

For instance if you open the local security policy mmc, expand the local
policies menu, and select user rights assignment. Take a look at two
settings. One is the, "Deny local logon"; you can add your service accounts
here to prevent them from logging on interactively. You may also want to
the note the opposite setting which is, "Log on locally". This will show
you all the accounts that can log on interactively.


---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
----------------------------------------------------------------------------