Re: event viewer
From: S. Pidgorny [MVP] (slavickp@yahoo.com)
Date: 08/06/02
- Next message: S. Pidgorny [MVP]: "Re: system hacked"
- Previous message: S. Pidgorny [MVP]: "Re: Windows 2000 SP3"
- In reply to: B. Goodman: "Re: event viewer"
- Next in thread: Eric Fitzgerald [MS]: "Re: event viewer"
- Reply: Eric Fitzgerald [MS]: "Re: event viewer"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "S. Pidgorny [MVP]" <slavickp@yahoo.com> Date: Tue, 6 Aug 2002 19:05:53 +1000
Can't admins reverse the setting?
I would suggest adding rights to mere users rather than trying to limit
access to admins..
-- Svyatoslav Pidgorny, MS MVP, MCSE -= F1 is the key =- "B. Goodman" <no@spam.org> wrote in message news:MPG.17b8574c73b4b27f989684@msnews.microsoft.com... > In article <0ca301c23c50$9b22e200$a5e62ecf@tkmsftngxa07>, > ithssszu@bh.com.pl says... > > hi, > > i have a question : is there any possibility to restrict > > administrator group in nt server to view security events ? > > i must install security log manager agent and i have deny > > all users (admin also) to view this. > > i saw that situation on some servers and i want to do this > > the same. > > > > thanks for any help. > > regards > > > > szymon szumicki > > bank handlowy w warszawie a member of citigroup > > warsaw > > poland > > > If the server is a domain controller, just go into User Manager for > Domains (usrmgr.exe) under the Policies menu and select "User > Rights...". From there, use the drop-down box to select "Manage > auditing and security log". Go under "Grant To:", remove > "Administrators" and add only the account(s) or group(s) you want to > have this permission. > > If the server is a member server, you need to go into User Manager for > that server. Probably easiest is with Start / Run and type "usrmgr \\% > computername%" (don't actually enter the quotation marks). At the top > of the user manager window, you should see something like "User Manager > - \\YourComputername". Then, do the same thing under Policies. > > Remember that there is no warranty, expressed or implied, in my advice. > Always be sure you have good backups of important files before making > configuration changes. > > Good luck! > > > > B. Goodman
- Next message: S. Pidgorny [MVP]: "Re: system hacked"
- Previous message: S. Pidgorny [MVP]: "Re: Windows 2000 SP3"
- In reply to: B. Goodman: "Re: event viewer"
- Next in thread: Eric Fitzgerald [MS]: "Re: event viewer"
- Reply: Eric Fitzgerald [MS]: "Re: event viewer"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
