Re: Need help locking down a server
- From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
- Date: Fri, 15 Dec 2006 08:38:01 -0700
"Chris Hall" <someone@xxxxxxxxxxxxx> wrote in message
news:%23iHf63FIHHA.3424@xxxxxxxxxxxxxxxxxxxxxxx
Need more coffee;->
hurry :-) pot is getting empty !
just grant it only to administrator
if not granted it is not held and does not need to be denied
"Roger Abell [MVP]" <mvpNoSpam@xxxxxxx> wrote in message
news:eETKQg%23HHHA.4896@xxxxxxxxxxxxxxxxxxxxxxx
doh !!!except
The only thing I can't seem to figure out is how to deny all users
exceptadministrator.just grant it only to administrator
if not granted it is not held and does not need to be denied
"Chris Hall" <someone@xxxxxxxxxxxxx> wrote in message
news:e7gSEe5HHHA.3952@xxxxxxxxxxxxxxxxxxxxxxx
Greetings,
I'm looking into options to secure our mail server (Exchange 2003 on
Windows
2003). We have an IT staff of 5 people, which includes our dept mgr,
all
of
which have access to the administrator password and whose accounts are
members of the Domain Admins group. What I propose to do is:
1. Change Admin password, allowing only one person access.
2. Disable Remote Desktop
3. Deny Logon Locally.
The only thing I can't seem to figure out is how to deny all users
administrator.
If anyone has any suggestions, I'd appreciate it!
.
- References:
- Need help locking down a server
- From: Chris Hall
- Re: Need help locking down a server
- From: Roger Abell [MVP]
- Re: Need help locking down a server
- From: Chris Hall
- Need help locking down a server
- Prev by Date: Re: Need help locking down a server
- Next by Date: ntds.dit and EFS
- Previous by thread: Re: Need help locking down a server
- Next by thread: password login to windows 2000 domain with active directory
- Index(es):
Relevant Pages
|
|
