Group policy and System Services

Hi - from within Group Policy you can assign access rights to system services so that non admins can stop, start, restart services etc. Does anyone know how to add services to the list?i.e I have a member server with a service not in the default list and I need to allow a non admin rights to restart it??
nisters10Asked:
Who is Participating?
 
spareticusConnect With a Mentor Commented:
browse to the following directory on your DC

<sysvol>\sysvol\<domain>\Policies\<policy GUID>\MACHINE\Microsoft\Windows NT\SecEdit\

edit the gpttmpl.inf file and add your service name to [Service General Setting]

then edit the actual GPO and set the security the way you want it.
0
 
spareticusCommented:
FInd the service short name using services.msc.  In the properties of the service, you will see the name of the service next to "Service Name"
Once you know the service name, you can add it to the text file in the policy under [Service General Setting]<sysvol>\sysvol\<domain>\Policies\<policy GUID>\MACHINE\Microsoft\Windows NT\SecEdit\GptTmpl.inf

Once it is added into the text file, open your gp editing tool (are you using GPMC yet?), and change the security.
Have you seen the place for setting security in this, or did you need assistance with that as well.
0
 
nisters10Author Commented:
Found the service name but not sure of the next step? I know how to set the permissions on the services I just can't add any new services to the policy. any help greatly appreciated..
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.