Barb
Advisor
10 months agoLeast Privilege's script to set permissions on Services for Non Admin account.
With the new security push for us to use non admin accounts. If anyone would like I to have a script that can run on Domain and one for Workgroup Servers. That iterates though all services and applies correct SDDL for least privilege's account. Extract these to c:/temp, add your list of servers (or for the workgroup add the single server to the serverlist.txt) and then run the RunScript.ps1
You'll need a local admin account to run with for Workgroup Server
You'll need a DA account to run for list of Domain Servers.
PM me if you are interested ;)
Hi Suzanne its a one time process. Anytime you provision a new server thou it will need to be run as part of your provision process.