Re: remove security for everyone

From: Karl (anonymous_at_discussions.microsoft.com)
Date: 10/27/03 

Date: Sun, 26 Oct 2003 16:45:52 -0800

well ... actually i haven't been able to run this yet only
because i'm connecting to the system remotely and cannot
get into the office today - i only have access to xp and
98 from here and don't have the cd copied to the server -
there are win2k pro's at the office but are shut down for
the weekend.
and yes it is a pdc and the only server configured -
luckily it is not quite in production yet although
everything was installed including metaframe and basically
ready to go live tuesday - until someone started clowning
around with the security
i will try Dmitry's suggestion soon as i can - probably
tomorrow morning
thanks for your help
kb

>-----Original Message-----
>Does the secedit tool that Dmitry suggested work? If
not, see if you can
>get the executable and file from another Windows 2000
system.
>
>Depending on the value of the system, now is the time to
get all the data
>off of it. If you end up rebooting, you could always do
an repair
>installation (a.k.a. over-the-top installation) to
restore the system.
>
>As I said, it depends on the system's value. If it's a
domain controller,
>for example, that might not be a great idea. If it's
your only domain
>controller then you have a serious problem.
>
>Regards
>
>Oli
>
>
>
>"Oli Restorick [MVP]" <oli@mvps.org> wrote in message
>news:ejPBXUAnDHA.2068@TK2MSFTNGP09.phx.gbl...
>> As you've discovered, "deny" means "deny". It
overrides anything else.
>>
>> You should be able to take ownership from the security
tab and then reset
>> the permissions.
>>
>> Oli
>>
>>
>> "Karl" <anonymous@discussions.microsoft.com> wrote in
message
>> news:007e01c39c00$47c7df00$a601280a@phx.gbl...
>> > ok so now i've done it - i was playing with security
and
>> > set the c:\winnt directory to have no access by
everyone -
>> > although i thought that i gave full rights to
>> > administrators i can no longer access winnt which
means i
>> > can't run any admin utils etc - oops - i'm a little
afraid
>> > of rebooting because i dont think i can login again.
>> > any help would be appreciated
>>
>>
>
>
>.
>

Relevant Pages

  • Re: remove security for everyone
    ... It seems like an unusual configuration you have there -- one DC with Citrix ... You will have some security concerns with Citrix on a DC. ... >>Does the secedit tool that Dmitry suggested work? ...
    (microsoft.public.win2000.security)
  • Re: Site or Domain
    ... Domain aren't security Boundaries, ... forest, and they are not themselves the ultimate security boundary. ... Each Active Directory domain is authoritative for the ... Domain controller hardware and security facilities Each Windows Server ...
    (microsoft.public.windows.server.active_directory)
  • Re: SBS 2003 and TS-App Mode
    ... It's not secure... ... functionality over security and now you want functionality back. ... open and easy to use...they want TS on a domain controller back. ... Do not enable application server mode on a domain controllers. ...
    (microsoft.public.windows.server.sbs)
  • RE: Share Point?
    ... make it on a domain controller. ... I'm not sure about sharepoint server, ... Has anyone here tested Share Point's security? ... INCLUSIVE curriculum utilizes lectures, ...
    (Focus-Microsoft)
  • RE: Security audit & Domain Controller security
    ... Thank you for posting in SBS newsgroup. ... I understand you can not open the Domain Controller ... Security Policy from Administrator Tools. ... zone file now has the _msdcs zone re-created. ...
    (microsoft.public.windows.server.sbs)