Solved

Is there a way to setup up Permissions so regular users can update antivirus daily but not be able to install stuff?

Posted on 2008-10-11
5
249 Views
Last Modified: 2012-05-05
I have workstations and vpn remote users with laptops. They can't update their virus protection software or other installed software on their machines. The remotes and local workstations are on a windows 2003 server domain with active directory. Can these users still be restricted so they don't delete or cause havoc to their machines the way they are currently, and somehow give them permisssions to update existing software on the machine? (Such as Anti virus, etc..) The workstations are all windows xp.
0
Comment
Question by:FTGE
5 Comments
 

Expert Comment

by:flipmedia
ID: 22696661
Hi,
Could you please explain what type of antivirus you are using there.If its a corporate antivirus,i am sure that you can update the clients centrally by pushing the updates form the server itself,without changing the access restrictions of the users.
0
 
LVL 20

Expert Comment

by:wolfcamel
ID: 22696662
the antivirus services should run as local administrator, and hence be able to self update
0
 

Author Comment

by:FTGE
ID: 22698191
does this mean assign the user as an administrator on their local machine not through active directory? Doesn't this give them rights to install foreign software as well? Isn't their some sort of group policy setting that could be made instead?
0
 
LVL 7

Accepted Solution

by:
enzogoy earned 500 total points
ID: 22699930
No, you don't need to allow the user as an administrator.  Antivirus software suppose to be push out to all machine in your organisation through AD (I assume).  Update will be push out from the Central Server through GPO (at my workplace) base on computer not user therefore it has nothing to do with user rights.  The user doesn't need to do anything, they don't even know when will the update install on their PC.  And the best way is push out these update to desktop during night time.
enz
0

Featured Post

Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

Join & Write a Comment

Remote Apps is a feature in server 2008 which allows users to run applications off Remote Desktop Servers without having to log into them to run the applications.  The user can either have a desktop shortcut installed or go through the web portal to…
So, you're experiencing issues on your network and you've decided that you need to perform some tests to determine whether your cabling is good.  You're likely thinking that you may need to spend money which you probably don't have on hiring/purchas…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now