Re: Security hierarchy

From: Steven L Umbach (n9rou@attbi.com)
Date: 04/20/03

• Next message: FrayedString: "Re: Internet Popups"
• Previous message: kevin still: "Re: No Confirm On Downloads..."
• In reply to: Peter K.: "Re: Security hierarchy"
• Next in thread: Peter K.: "Re: Security hierarchy"
• Reply: Peter K.: "Re: Security hierarchy"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Steven L Umbach" <n9rou@attbi.com>
Date: Sat, 19 Apr 2003 22:49:14 GMT

       Hi Peter. AFAIK you can not set it to not defined at local security
policy level - must be done at domain level. Anyhow to to reset local policy
see link. --- Steve

http://www.jsiinc.com/SUBL/tip5500/rh5571.htm

"Peter K." <pmkdatabase@yahoo.ca> wrote in message
news:5vdv9vshl73r9gnf2iadbg5lblf0qiu3eu@4ax.com...
> HI Steven,
>
> Comments inline. BTW, this is my home machine - just one server and
> one workstation. I am always logged in administrator.
>
> Thanks,
>
>
> Peter
>
> On Mon, 14 Apr 2003 03:46:49 GMT, "Steven L Umbach" <n9rou@attbi.com>
> wrote:
>
> > Hmm!? I tried it out on my test network today. Set domain policy to
> >complex passwords enabled. New users had to have complex passwords. Then
I
> >set domain policy to be disabled, used secedit refresh and was able to
add
> >users with simple passwords again. Effective local policy reflected what
was
>
> What happens with a disabled local setting, and how can I set this
> back to undefined as it is now disabled?
>
> >set at domain level. Look in event viewer for any clues of a problem. You
>
> Nothing indicative of any problem at all.
>
> >might want to try to reset your local security policy.
>
> How?
>
> > would also suggest
> >running dcdiag first on the domain controller to see what it reports
while
> >logged on as a domain administrator. It is located on cdrom in
support/tools
> >folder where you will need to run the setup program there. -- Steve
>
> No problems reported.,
>
>
> Peter

• Next message: FrayedString: "Re: Internet Popups"
• Previous message: kevin still: "Re: No Confirm On Downloads..."
• In reply to: Peter K.: "Re: Security hierarchy"
• Next in thread: Peter K.: "Re: Security hierarchy"
• Reply: Peter K.: "Re: Security hierarchy"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Local Security Policy on domain controller? ... A google search for "security configuration templates" turns up a fair ... Some settings require a reboot and others don't. ... >> It's so close to affecting the local policy that I probably shouldn't ... >> it will affect local security policy, ... (microsoft.public.win2000.security) Re: local policy ... You local policy is likely not corrupt. ... domain level policies are being applied, ... > In what folder do I find the file that contains the local policy settings. ... (microsoft.public.windowsxp.security_admin) Re: Restrict computers user in an OU or Group can log on to ... If you don't want to overwrite local policy for user rights look into using the ... With over 1500 computers I don't feel like ... (microsoft.public.win2000.security) Re: ftp non-anonymous help - logon locally overriden by effective policy setting at domain level ... Local policy cannot take precedence over a group policy. ... policy for the web server either by putting the web server into its own OU ... > "To simplify administration of Windows 2000 accounts used for FTP ... (microsoft.public.inetserver.iis.security) Re: cant override screen saver policy ... don't get this policy setting. ... > You're right in that the local policy gets applied first. ... > screensaver policy would be to create a security group, add the computers to ... >> domain level - it works as it's supposed to. ... (microsoft.public.win2000.group_policy)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint