Re: local security policy
From: Casey Boone (caseyb@yourclearwave.com)
Date: 08/22/02
- Next message: Ron: "Unable to install from CD after installation of SP3"
- Previous message: Adam S. Ungelbach: "Sending Event Logs to SQL Database"
- In reply to: Tibor Biro: "local security policy"
- Next in thread: Casey Boone: "got it!"
- Reply: Casey Boone: "got it!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Casey Boone" <caseyb@yourclearwave.com> Date: Thu, 22 Aug 2002 14:41:09 -0500
ive managed to force it to run a batch file on each system startup (via a
remote group policy edit)
im playing with secedit commands ran via that to see what i can make it
export and import, i will keep you posted of my progress
all in all i think i should find this to be hilarious... at least if i wasnt
the one responsible for it happening in the first place :\
Casey
"Tibor Biro" <tiborbiro@rogers.com> wrote in message
news:1f6801c249e7$21069df0$9be62ecf@tkmsftngxa03...
> Hi there,
>
> The local security database (at least the user rights
> assignment part) is placed in
> C:\WINNT\security\Database\secedit.sdb. If you have a
> recent backup of that file you can restore it and try it
> out. You also have to lower the version of the policy,
> this one is in the C:\WINNT\system32\GroupPolicy\gpt.ini
> file. Put it to 1 or something lower than whatever you
> currently have.
>
> After this you want to make sure that the policy is
> propagated so run these commands on the target machine
> (you can use the scheduler to schedule remotely):
> secedit /refreshpolicy user_policy /enforce
> secedit /refreshpolicy machine_policy /enforce
>
> This might do the trick, let me know how it goes.
>
> And finally a warning:
> I tested this but there is no guarantee that it will do
> any good so please take the necessary precautions.
>
> Regards,
> Tibor Biro
>
>
> >-----Original Message-----
> >i was altering some settings in the local security policy
> app, wasnt
> >finished with them, but i had to pause what i was doing
> to take care of
> >something else.
> >
> >one of the other techs wasnt aware of what i was doing
> and logged me out
> >thinking it best (as my account has admin rights, we have
> a standing policy
> >that you dont leave yourself logged in at the server with
> an account with
> >admin rights)
> >
> >now i cant log into the server (noone can)
> >
> >i do seem to have remote registry access (and i have the
> login/pass-es for
> >all of the ppl in the administrator group) i just cannot
> find where to go to
> >remove the policy and allow local login. i also have
> access through
> >management console on another machine.
> >
> >what i was doing was trying to just lock out
> the "administrator" account
> >from logging in and anyone in the users group, but it
> looks like i managed
> >to just lock everyone out. (i even created a user who was
> not a member of
> >the users group nor the admin group, but he still couldnt
> log in either)
> >
> >
> >this is a stand alone server, not running as a domain
> controller. should i
> >be looking for a file on disk? should i be looking for a
> registry entry? i
> >cant seem to locate anything in either that looks like
> what i need.
> >
> >any help would be greatly appreciated
> >
> >Casey Boone
> >
> >
> >.
> >
- Next message: Ron: "Unable to install from CD after installation of SP3"
- Previous message: Adam S. Ungelbach: "Sending Event Logs to SQL Database"
- In reply to: Tibor Biro: "local security policy"
- Next in thread: Casey Boone: "got it!"
- Reply: Casey Boone: "got it!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
