This is the stuff I love and hate. I love learning the intricacies but sometimes hate that something new responds differently to commands/settings that previously were a non-issue. Once finding the answer though it then becomes “oh, cool!”
Dave From: Christopher Bodnar [mailto:[email protected]] Sent: Wednesday, September 21, 2011 7:06 AM To: NT System Admin Issues Subject: Re: Task Scheduler question in W2K8R2 That gets to be a more involved question. Yes, the default for this setting out of the box is disabled. We are in the process of working towards CIS compliance. On W2K3 systems this setting is required for compliance, and since it doesn't affect Scheduled Tasks on W2K3 systems there were no issues. Now on 2008 systems it does have an affect, so we need to work with our compliance group to have an exception to the CIS standard. Not a huge issue, just something we were not aware of. Chris Bodnar, MCSE, MCITP Technical Support III Distributed Systems Service Delivery - Intel Services Guardian Life Insurance Company of America Email: [email protected]<mailto:[email protected]> Phone: 610-807-6459 Fax: 610-807-6003 From: "Andrew S. Baker" <[email protected]<mailto:[email protected]>> To: "NT System Admin Issues" <[email protected]<mailto:[email protected]>> Date: 09/21/2011 09:59 AM Subject: Re: Task Scheduler question in W2K8R2 ________________________________ IIRC, that setting should be disabled by default. I imagine that this is something your organization has set at some point and time? ASB http://XeeMe.com/AndrewBaker<http://xeeme.com/AndrewBaker> Harnessing the Advantages of Technology for the SMB market… On Wed, Sep 21, 2011 at 9:26 AM, Christopher Bodnar <[email protected]<mailto:[email protected]>> wrote: For those of you following this, I've done some testing and veriifed that the problem is: Network access: Do not allow storage of passwords and credentials for network authentication So, if you have a scheduled task on a W2K8 or above system that needs to use domain credentials to do anything outside the local machine (pull files, connect to remote machine), this setting needs to be set to "Disabled". Thanks, Chris ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
