Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

How can I delegate Authority for a user to start / stop a specific service?

Posted on 2004-08-25
3
1,022 Views
Last Modified: 2008-02-01
Hello,

We have a Win 2003 server running an application that we need a group of users (programmers) to be able to start/stop a specific service on without giving them full control on the box.

How can I delegate Authority for a user to start / stop a specific service?  Or if I have to, all of the services.

Thanks
0
Comment
Question by:caw01
3 Comments
 
LVL 5

Expert Comment

by:dgroscost
ID: 11895422
I don't believe you can use Delegation of Control Wizard to do this.  Nor am I finding a way to control this through Group Policy Editor.  The only thing that comes close is "Act as Operating System" or "Deny Logon Service"

I'm wondering now what the best method to do this might be... perhaps set up a process via an internal web site that only certain logon credentials can use that will stop or start the service...
0
 
LVL 84

Accepted Solution

by:
oBdA earned 500 total points
ID: 11896329
There are several ways to do this; you can use a group policy, you can use a security template, or (this should work for a W2k3 machine as well, but test this on a test machine before using it in earnest) you can use the subinacl.exe tool from the W2k3 Resource Kit tools (probably the easiest way).
If you're feeling really adventurous, there's even a fourth way, using sc.exe and the "sdset" switch, but don't ask me how to create the proper SDDL string ...

HOW TO: Configure Group Policies to Set Security for System Services in Windows Server 2003
http://support.microsoft.com/?kbid=324802

HOW TO: Grant Users Rights to Manage Services in Windows Server 2003
http://support.microsoft.com/?kbid=325349

HOW TO: Grant Users Rights to Manage Services in Windows 2000
http://support.microsoft.com/?kbid=288129

Windows Server 2003 Resource Kit Tools
http://www.microsoft.com/downloads/details.aspx?familyid=9d467a69-57ff-4ae7-96ee-b18c4790cffd&displaylang=en
0
 

Author Comment

by:caw01
ID: 11899637
We did accomplish this with a group policy.  Thanks.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
inactive users 13 81
Event ID: 1202 / Source: SceCli 6 124
Task with PowerShell Script is failing with 0x41301 7 120
Migration of AD user accounts from Server 2003 to 2012R2 5 94
by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
Numerous times I have been asked this questions that what is it that makes my machine log on so slow, there have been cases where computers took 23 minute exactly after taking password and getting to the desktop. Interesting thing was the fact th…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question