Win 2000 Security

[Billy]

I am an administrator for an NT 4.0/2000 network. There
are several user's on the system who require "power user"
status in order to get to a couple of applications that
are located on the old mainframe system.

In an effort to rebuff some of the hundreds of downloads,
software, and virus problems that we are encountering of
late, I am wondering if it is possible to ONLY allow users
to have "power user" privledges for the use of mainframe
applications only ?

Any assistance and/or insight is GREATLY appreciated.

Thank you,
Billy

 

[Danny Sanders]

Granting a user power user status makes them a power user for that
particular computer. It has nothing to do with files opened over the
network.
Power user status relaxes the security for THAT user on THAT computer. You
can not grant "power user status" by file.

hth
DDS W 2k MVP MCSE

 

[Steven L Umbach]

If you are having problems with regular users running particular applications, you
might be able to use free tools such as Filemon and Regmon from Sysinternals to track
down where permissions are being denied and make changes to allow access. Basically
you log onto a computer as a regular user and then use runas to run Regmon or Filemon
just before you try to use the application. After stopping the capture you should see
"denied" access messages where changes need to be made, and you may need to do such
several times being laborious process, but at least worth trying. --- Steve

http://www.sysinternals.com/ntw2k/utilities.shtml