Windows IT Pro is the leading independent community for IT professionals deploying Microsoft Windows server and client applications and technologies.
  
  
  Advanced Search 


February 1998

User Rights


From the February 1998 Edition
of Windows IT Pro
Michael D. Reilly
Getting Started with NT
InstantDoc #2946
Windows IT Pro
Email this Article
Printer Friendly
Reader Comments
Digg This
Del.icio.us
RSS
Subscribe to Windows IT Pro | See More Windows NT 4.0 Articles Here | Reprints | Or get the Monthly Online Pass—only $5.95 a month!

Assign or remove rights to customize your network

Previous articles in Windows NT Magazine have discussed user rights from the point of view of securing your system and protecting it from hackers and external attacks. (For a selection of such articles, see "Related Articles in Windows NT Magazine," page 207. For more about protection from hackers, see Andrey Kruchkov, "The Accidental Hacker," page 177.) This article looks at how you can assign or remove user rights to gain flexibility in delegating tasks while you maintain control of your NT network.

Permissions and Rights
A systems administrator assigns a permission to let a user access a resource such as a file, a directory, or a printer. The administrator assigns a right to let a user perform a task such as changing the system clock time. A permission is always associated with an object, and a right is always associated with the system.

Setting User Rights
You configure rights with the User Manager utility. On a domain controller, you configure rights from the User Manager for Domains, which lets you set rights that apply to the domain. From the Policies menu, select User Rights to open the dialog box and configure rights for your users. When you first open the User Rights dialog box, you'll see only basic, or standard, user rights. To view a larger and more advanced group of user rights in the drop-down list, select the Show Advanced User Rights check box, as you see in Screen 1, page 206.

You can assign each right to individual users or to groups of users. NT automatically assigns many rights to specific groups. For example, on a domain controller, NT assigns the log on locally right to the Administrators, Account Operators, Server Operators, and Backup Operators groups. NT does not assign this right to Domain Users or to the Everyone group because users in these groups will usually access the server across the network and will not log on at the server.

NT assigns certain rights by default to the Everyone group. This assignment might be too liberal on NT's part, and some administrators like to substitute Domain Users for the Everyone group to maintain more control over these rights.

To assign a right, select the right and click Add to bring up a list of users and groups, from which you select the appropriate items, as Screen 2, page 206, shows. I recommend adding a user account to an established NT group that already has the right you're assigning. You can assign rights to global groups, local groups, and users from current and trusted domains.

   Previous  [1]  2  Next 


Top Viewed ArticlesView all articles
Battery Life Issues Almost Certainly Not Windows 7's Fault

While Microsoft is still investigating a notebook battery life issue that was supposedly caused by Windows 7, some interesting trends have emerged. ...

Confirmed: Battery Life Issues Not Windows 7's Fault

Microsoft on Monday issued a lengthy statement about the recent Windows 7 battery controversy, echoing my assessment from earlier in the day, but backing it up with hard, cold evidence. Put simply, Windows 7 is not responsible for any battery life issues ...

Getting your iPhone to Sync with Exchange 2003

Follow these steps to use an iPhone with Exchange. ...
Windows OSs Whitepapers Protecting Microsoft SharePoint
Related Events Deep Dive into Windows Server 2008 R2 presented by John Savill

Configuration Manager SP1 and R2 Overview

Check out our list of Free Email Newsletters!
Windows OSs eBooks Understanding and Leveraging Code Signing Technologies

A Guide to Windows Certification and Public Keys

SQL Server Administration for Oracle DBAs
Related Windows OSs Resources Introducing Left-Brain.com, the online IT bookstore
Looking for books, CDs, toolkits, eBooks? Prime your mind at Left-Brain.com

Discover Windows IT Pro eLearning Series!
Clear & detailed technical information and helpful how-to's, all in our trademark no-nonsense format


ADS BY GOOGLE

Job Openings in IT SPONSORED LINKS FEATURED LINKS
Collaborate with Confidence
Accelerate deployment and simplify Microsoft SharePoint management with EMC solutions and services.

Calculate your savings now
See how SAN is 57% cheaper than DAS over three years

Announcing Symantec Backup Exec 2010
With integrated deduplication and unified archiving technology.
Feb 25 - Are your IT Systems distributed? Or Convoluted?
Find out why integrated management solutions are more important than ever in today's IT environments and what criteria to consider when evaluating those solutions.

Virtualization Faceoff – Join the Discussion
Blogs, free poster, videos, community commentary – IT experts and peers face off on VMware & Microsoft virtualization solutions.

Should Your Email Live in the Cloud?
This Forrester report shows how-to calculate your on-premise email costs and compare with cloud-based alternatives and offers best practices for reducing email costs.

Exchange Server 2010: Deploying Unified Communications
register for this free virtual event and build your Unified Communications future on a strong Exchange Server 2010 foundation

New from Left-Brain.com - Manage VMware with PowerShell
Learn how to perform everything from simple ad-hoc reporting at the command-line to complex scripts that automate a massive deployment of hundreds of virtual machines.  Solve your old problems using less code than you thought possible!
Windows IT Pro Home Register FAQ for Windows WinInfo News
Europe Edition About Us Contact Us/Customer Service Media Kit Affiliates / Licensing  
SQL Server Magazine Office & SharePoint Pro DevProConnections IT Job Hound
Left-Brain.com Technology Resource Directory asp.netPRO ITTV Windows SuperSite 
 
 Windows IT Pro is a Division of Penton Media Inc.
 © 2010 Penton Media, Inc. Terms of Use | Privacy Statement