Solved

Group policy and System Services

Posted on 2004-04-20
5
345 Views
Last Modified: 2008-01-16
Hi - from within Group Policy you can assign access rights to system services so that non admins can stop, start, restart services etc. Does anyone know how to add services to the list?i.e I have a member server with a service not in the default list and I need to allow a non admin rights to restart it??
0
Comment
Question by:nisters10
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 7

Expert Comment

by:spareticus
ID: 10871081
FInd the service short name using services.msc.  In the properties of the service, you will see the name of the service next to "Service Name"
Once you know the service name, you can add it to the text file in the policy under [Service General Setting]<sysvol>\sysvol\<domain>\Policies\<policy GUID>\MACHINE\Microsoft\Windows NT\SecEdit\GptTmpl.inf

Once it is added into the text file, open your gp editing tool (are you using GPMC yet?), and change the security.
Have you seen the place for setting security in this, or did you need assistance with that as well.
0
 

Author Comment

by:nisters10
ID: 10871724
Found the service name but not sure of the next step? I know how to set the permissions on the services I just can't add any new services to the policy. any help greatly appreciated..
0
 
LVL 7

Accepted Solution

by:
spareticus earned 500 total points
ID: 10872184
browse to the following directory on your DC

<sysvol>\sysvol\<domain>\Policies\<policy GUID>\MACHINE\Microsoft\Windows NT\SecEdit\

edit the gpttmpl.inf file and add your service name to [Service General Setting]

then edit the actual GPO and set the security the way you want it.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question