Local Security Settings (Admin Users)

A

AlohaMahalo

How do I prevent users with Administrator privileges [other than the
Administrator (root) account of course] to access / edit the Local Security
Policy settings.

Thank you in advance for any feedback.
 
J

Jim

AlohaMahalo said:
How do I prevent users with Administrator privileges [other than the
Administrator (root) account of course] to access / edit the Local
Security
Policy settings.

Thank you in advance for any feedback.
Click to expand...
All members of the administrators group have the same privileges.
You cannot keep a member of this group from doing whatever they wish
whenever they wish.
You can deny access do the program which does the magic with the LSP, but
all that would do is slow a determined user down.
Jim
 
A

AlohaMahalo

Hi Jim,

Sounds good to me. Is there a step by step procedure that describes how you
can do that? Any help appreciated. Thank you so much.

Jim said:
AlohaMahalo said:
How do I prevent users with Administrator privileges [other than the
Administrator (root) account of course] to access / edit the Local
Security
Policy settings.

Thank you in advance for any feedback.
Click to expand...
All members of the administrators group have the same privileges.
You cannot keep a member of this group from doing whatever they wish
whenever they wish.
You can deny access do the program which does the magic with the LSP, but
all that would do is slow a determined user down.
Jim
Click to expand...
 
S

Steve Riley [MSFT]

You've asked your question twice here.

Anyone in the group named "Administrators" can do whatever they want on the
computer. You can't do anything to prevent this.

--
Steve Riley
(e-mail address removed)
http://blogs.technet.com/steriley
http://www.protectyourwindowsnetwork.com



AlohaMahalo said:
Hi Jim,

Sounds good to me. Is there a step by step procedure that describes how
you
can do that? Any help appreciated. Thank you so much.

Jim said:
AlohaMahalo said:
How do I prevent users with Administrator privileges [other than the
Administrator (root) account of course] to access / edit the Local
Security
Policy settings.

Thank you in advance for any feedback.
Click to expand...
All members of the administrators group have the same privileges.
You cannot keep a member of this group from doing whatever they wish
whenever they wish.
You can deny access do the program which does the magic with the LSP, but
all that would do is slow a determined user down.
Jim
Click to expand...
Click to expand...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Local Security Settings 3
can't modify local security settings 2
Taskbar Notification Area Icons for Limited Accounts 3
can not add myself into the local admin group. But am the Domain A 1
Individual User settings with Group Policy 4
Admin user account locked out - need help! 3
Cannot log in with "user" rights in the domain 2
Deny Logon Locally 6

Top