asked on need help creating a user just to run scheduled tasks on server 2008 r2
Hi!
I need help creating a user dedicated for scheduled tasks on windows server 2008 r2.
The user should not have access to do anything else other than running vbs scripts inside batch file, scheduled with "task scheduler".
I tried to create a local user, not an administrator, and gave it full access permission to the scripts folder and to the folder contain the files that the script will manage.
Unfortunately, I get an error say the user doesnt have access for this machine (the server).
I do not want to add this user to administrator group, because than I'll have another security weakness\weak point in my system (another user hackers can try to use).
Please advice,
Thanks!
I need help creating a user dedicated for scheduled tasks on windows server 2008 r2.
The user should not have access to do anything else other than running vbs scripts inside batch file, scheduled with "task scheduler".
I tried to create a local user, not an administrator, and gave it full access permission to the scripts folder and to the folder contain the files that the script will manage.
Unfortunately, I get an error say the user doesnt have access for this machine (the server).
I do not want to add this user to administrator group, because than I'll have another security weakness\weak point in my system (another user hackers can try to use).
Please advice,
Thanks!
SBSWindows Server 2008
Last Comment
Larry Struckmeyer MVP
ASKER
Thanks but it didn't helped me much. Of course administrator permission will let it run the scheduled task (its a windows server machine, the default is only admins can logon to it).
My question is, how do I give regular user permission to run tasks on the server, I do not want to create an administrator account for scheduled tasks because I believe in giving just the permission the user must have and not more than that.
Thanks!
My question is, how do I give regular user permission to run tasks on the server, I do not want to create an administrator account for scheduled tasks because I believe in giving just the permission the user must have and not more than that.
Thanks!
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Thanks for the answers,
I don't use the main admin user for crons because I'll hate to manually go and update new passwords everywhere on every change.
I see I can schedule a task without providing additional credentials but in case the server doesn't have any user logged on to, and the user created the task changes his password, is the task will still run?
If so, which username or group should have permissions to the resources for the script?
Many thanks!
I don't use the main admin user for crons because I'll hate to manually go and update new passwords everywhere on every change.
I see I can schedule a task without providing additional credentials but in case the server doesn't have any user logged on to, and the user created the task changes his password, is the task will still run?
If so, which username or group should have permissions to the resources for the script?
Many thanks!
In the scheduled tasks setup you can set several parameters, one of which is to require or not require that the user be logged on.
If so, remove it from administrators and then it is a matter of finding the specific difference between administrators and standard that is sufficient to get access.