Windows Server 2003 SP1 DCOM policy
From: stvp (stvp.public_at_scarlet.be)
Date: 10/26/05
- Next message: sunit: "CryptImportKey returns NTE_BAD_TYPE"
- Previous message: sunit: "Re: CryptImportkey() returns an error NTE_BAD_VER"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 26 Oct 2005 06:24:28 -0700
Hello,
In Windows Server 2003 SP1, 2 new DCOM security policies have been
added: 'DCOM: Machine Access Restrictions in Security Descriptor
Definition Language (SDDL) syntax' and 'DCOM: Machine Launch
Restrictions in Security Descriptor Definition Language (SDDL) syntax'.
I have a program that grants the 'Log on as a Service' policy to a
number of users and groups, but I need to grant the 2 new policies as
well. I downloaded the 2003 SP1 Platform SDK, but can't find any
reference to the new policies.
Other new 'features' like the 'Distributed COM Users' group have been
added to the Platform SDK, so I hope the new DCOM policies can be set
via an API as well.
If I had the internal name of the policies (like 'SeServiceLogonRight'
or SE_SERVICE_LOGON_NAME for 'Log on as a Service'), I could use that
too. Any idea where I can find the entire list of policies (other than
on MSDN or the Platform SDK)?
All tips are welcome...
Stijn Van De Putte
- Next message: sunit: "CryptImportKey returns NTE_BAD_TYPE"
- Previous message: sunit: "Re: CryptImportkey() returns an error NTE_BAD_VER"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
