lgropper
asked on
user does not have permission to start service
I'm trying to lock down a PC that has windows XP Pro running and is not on a domain.
the issue im having is trying to allow specific users to have access to run specific services. IE: DHCP, DNS and pcAnywhere.
ive also tried to use the "LOGON" feature and that doesnt work and i cant seem to find/locate the policy to allow this.
please help
the issue im having is trying to allow specific users to have access to run specific services. IE: DHCP, DNS and pcAnywhere.
ive also tried to use the "LOGON" feature and that doesnt work and i cant seem to find/locate the policy to allow this.
please help
ASKER
i cant
ASKER
i cant start the services as a user and i need to be able to start them. either selected services or all.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thank you, i read the documentation you provided.
i cant seem to find the syntax to use to change the values.
IE: DHCP is as follows:
D:(A;;CCLCSWLOCRRC;;;AU)(A ;;CCLCSWRP WPDTLOCRRC ;;;NO)(A;; CCDCLCSWRP WPDTLOCRSD RCWDWO;;;B A)(A;;CCLC SWRPWPDTLO CRRC;;;SY)
How do i change (A;;CCLCSWLOCRRC;;;AU) to (A;;CCLCSWRPWPDTLOCRRC;;;A U)
but keeping all the rest of the values intact?
i cant seem to find the syntax to use to change the values.
IE: DHCP is as follows:
D:(A;;CCLCSWLOCRRC;;;AU)(A
How do i change (A;;CCLCSWLOCRRC;;;AU) to (A;;CCLCSWRPWPDTLOCRRC;;;A
but keeping all the rest of the values intact?
ASKER
ADDITION TO THE ABOVE:
i ran SC SDSET DHCP D:(A;;CCLCSW*RPWPDT*LOCRRC ;;;AU)(A;; CCLCSWRPWP DTLOCRRC;; ;NO)(A;;CC DCLCSWRPWP DTLOCRSDRC WDWO;;;BA) (A;;CCLCSW RPWPDTLOCR RC;;;SY)
** = my addition
and when i log in as on of the users i'm getting an " ERROR 1079: The account specified for this service is different from the account specified for other services running the in the same process."
i'm not sure why this is. all the users are under the USER group. so wouldnt my changes work for AUTHENTICATED USERS?
PLEASE HELP
i ran SC SDSET DHCP D:(A;;CCLCSW*RPWPDT*LOCRRC
** = my addition
and when i log in as on of the users i'm getting an " ERROR 1079: The account specified for this service is different from the account specified for other services running the in the same process."
i'm not sure why this is. all the users are under the USER group. so wouldnt my changes work for AUTHENTICATED USERS?
PLEASE HELP
you can or you cant start the services
you do want to be able to or dont
Cheers!