Security Eventlog permissions set to (unexisting) Exchange Enterprise Server

L

Lars Dam

I have four (new) Windows XP machines. They are set up in
a domain. Normal operation seems fine. Just some things
are problematic.
Main reason seems to be the Security Eventlog permission
settings. Even if I'm logged in as Administrator locally,
I've no permission whatsoever on the Security Eventlog.
The permissions are granted to Exchange Enterprise
Servers. The problem exist on a Windows SBS 2000 setting;
so there are no Exchange Enterprise Servers on the
network. Therefore I seem to have lost grip on this Event
log. Other Eventlogs are available.

What's wrong, an what can I do about it.
 
G

Guest

Usually this is due to the "miss-implementation" of MS platforms "security architecture"

Very quickly and in general terms
Many administrators tend to give all and every right (to include NTFS permissions and through a Domain Policy) to "Domain Admins" global group on systems participating in the particular Domain. This pretty much limits what LOCAL "Administrators" group members can do on these systems (there are ways around it but by default this is what you do)

Solution: get rid of "Domain Admins" from permission, revise Policy to reflect "Administrators". All systems should be managed through local groups (to which you drop global groups from other systems or other Trusted Domains if this is the case)

Gregg.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

access to "manage auditing and security log" 0
Can't get EventLogs of type Security. 3
Configuration File 2
Only local PC users available in security tab Add permissions 3
Windows Server 2008 w/Exchange 2007 Authentication on Active Direc 1
DCOM error 10017 0
Permissions not applied to every user 4
Setting Permissions on XP Home 5

Top