Guest Mark Posted March 28, 2009 Posted March 28, 2009 We have a windows 2003 standalone server that is not part of a domain. The box will sit in a DMZ location acting as a web server. What level of access does an account need if they require remote access to the application, security and system event logs? I want to restrict an account from having admin permissions to the system. In the local securiyt policy, the options are set to restrict guests from accessing the logs. We are using a 3rd party application that connects and downloads the log information on a regular basis and really would like to restrict the level of access this account requires in order to connect and download these logs. Thanks in advance for any help given. Quote
Guest PA Bear [MS MVP] Posted March 28, 2009 Posted March 28, 2009 [[Forwarded to microsoft.public.windows.server.security newsgroup via crosspost.]] Mark wrote:<span style="color:blue"> > We have a windows 2003 standalone server that is not part of a domain. The > box will sit in a DMZ location acting as a web server. What level of > access > does an account need if they require remote access to the application, > security and system event logs? I want to restrict an account from having > admin permissions to the system. In the local securiyt policy, the options > are set to restrict guests from accessing the logs. We are using a 3rd > party > application that connects and downloads the log information on a regular > basis and really would like to restrict the level of access this account > requires in order to connect and download these logs. > > Thanks in advance for any help given. </span> Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.