Avatar of V4705
V4705
Flag for United States of America asked on

need help creating a user just to run scheduled tasks on server 2008 r2

Hi!
I need help creating a user dedicated for scheduled tasks on windows server 2008 r2.
The user should not have access to do anything else other than running vbs scripts inside batch file, scheduled with "task scheduler".

I tried to create a local user, not an administrator, and gave it full access permission to the scripts folder and to the folder contain the files that the script will manage.

Unfortunately, I get an error say the user doesnt have access for this machine (the server).
I do not want to add this user to administrator group, because than I'll have another security weakness\weak point in my system (another user hackers can try to use).


Please advice,
Thanks!
SBSWindows Server 2008

Avatar of undefined
Last Comment
Larry Struckmeyer MVP

8/22/2022 - Mon
Gary Davis

I checked our usage and I have a user for running scheduled tasks. It is a member of administrators. If you make your user member of administrators temporarily, does it work?

If so, remove it from administrators and then it is a matter of finding the specific difference between administrators and standard that is sufficient to get access.
V4705

ASKER
Thanks but it didn't helped me much. Of course administrator permission will let it run the scheduled task (its a windows server machine, the default is only admins can logon to it).

My question is, how do I give regular user permission to run tasks on the server, I do not want to create an administrator account for scheduled tasks because I believe in giving just the permission the user must have and not more than that.

Thanks!
ASKER CERTIFIED SOLUTION
Larry Struckmeyer MVP

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
Gary Davis

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
V4705

ASKER
Thanks for the answers,
I don't use the main admin user for crons because I'll hate to manually go and update new passwords everywhere on every change.
I see I can schedule a task without providing additional credentials but in case the server doesn't have any user logged on to, and the user created the task changes his password, is the task will still run?

If so, which username or group should have permissions to the resources for the script?


Many thanks!
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck
Larry Struckmeyer MVP

In the scheduled tasks setup you can set several parameters, one of which is to require or not require that the user be logged on.