Re: Disable the right to logon locally
From: Matt Hickman (hemo_jr_at_space.com)
Date: 05/22/04
- Next message: Sarah Tanembaum: "CD-RW control"
- Previous message: Roger Abell: "Re: where to put SQL Server ?"
- In reply to: Matt Hickman: "Re: Disable the right to logon locally"
- Next in thread: Roger Abell: "Re: Disable the right to logon locally"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 22 May 2004 06:55:20 -0700
hemo_jr@space.com (Matt Hickman) wrote in message news:<ce9a9081.0405212125.3c15a19d@posting.google.com>...
> dbwmn2001@yahoo.com (Dave Bowman) wrote in message news:<47e33e2c.0405200742.a3e4a24@posting.google.com>...
> > The question is the following: if I enable the policy in the Default
> > Domain Security Settings/Local Policies/User rights assignment/Deny
> > Logon locally and I add this user, does this change override
> > completely the machine policies?
>
> Since you are not granting the logon locally right to anyone,
> this should not override any denies of that right set-up locally.
>
> > I ask this because I notice that an XP workstation has a local setting
> > which denies logon to support* Users, ASPNET etc. so I'm wondering if
> > I have to add these users to the domain policy as well
>
> No, you don't
I stand corrected. The Domain policies do completely replace local ones.
--
Matt Hickman
Sometimes is difficult to reach a meeting of minds with machines; they
can be very pig-headed.
Robert A. Heinlein (1907 - 1988)
_The Moon Is a Harsh Mistress_ c 1966
-
- Next message: Sarah Tanembaum: "CD-RW control"
- Previous message: Roger Abell: "Re: where to put SQL Server ?"
- In reply to: Matt Hickman: "Re: Disable the right to logon locally"
- Next in thread: Roger Abell: "Re: Disable the right to logon locally"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
