Re: Inherited security properties

From: Steven L Umbach (n9rou_at_attbi.com)
Date: 05/12/03 

Date: Mon, 12 May 2003 17:43:04 GMT

      Those settings are coming from either domain group/security policy or
group policy set on the organizational until that your server is in. Those
higher up policies that have any settings defined, can override defined
settings at the local policy level. Polices are applied in this order -
site, local, domain, organizational unit. --- Steve

"Brad Pears" <bradpears@hotmail.com> wrote in message
news:04bc01c31895$ec89bf70$a601280a@phx.gbl...
> We have a WIndows 2000 SBS server and a member Windows
> 2000 server in a domain. My question is this...
>
> When I look at the local security policy on the Windows
> 2000 member server, where are the inherited security
> settings coming from?
>
> For instance, we had an issue last week where
> the 'Everyone' group had become unchecked in the
> inherited list for the setting 'Access this computer from
> the network'. This caused the server to be unaccessible
> for anyone who had shortcuts on their desktop to it or
> had mapped drives to it. Logging on locally was still
> possible however.
>
> When I checked the local security policy on this machine
> the next day, I noticed that the 'Everyone' group had
> been checked on the inherited side (the greyed out check
> boxes). I do know what had happened, for that checkbox to
> all of a sudden be checked all on it's own so I am
> wondering where it would have been inherited from. I must
> have made a change elsewhere for this to have happened.
>
> Any help would be much appreciated...
>
> Thanks,
>
> Brad

Relevant Pages

  • Re: Userenv Event ID 1054
    ... Did you add the slow link item to you policy or make another GPO ... To disable slow link detection on the SBS Server, ... please refer to the following settings to modify the ...
    (microsoft.public.windows.server.sbs)
  • Re: W32 time problem on SBS2003 Premium
    ... That other server isn't really so odd. ... then group policy isn't being applied and your manual settings will be used. ... >> have settings for Enable NTP Client, Configure NTP Client, and Enable NTP ...
    (microsoft.public.windows.server.sbs)
  • RE: Please help - with the portal server
    ... LAN settings - i was wondering may be - sps uses certain ports to communicate ... with the server over the internet. ... microsoft.sharepoint.portal.dll security permission grant set is incompatible ... Use Group Policy to Add the Sites ...
    (microsoft.public.sharepoint.portalserver)
  • Re: SBS DCOM
    ... On the server I was afraid to delete them ... (and I can now change policy settings and access DCOM and WMI ... |> steps to reset the group policy objects to default, ...
    (microsoft.public.windows.server.sbs)
  • Re: Local security policy on Windows server 2003 domain controller
    ... Anything defined higher up in the policy chain has ... precedence over the local security policy. ... policy in the domain called default domain controllers security policy. ... > So this means that the settings in the Local Security policy are disabled by> default, ...
    (microsoft.public.windows.server.general)