What can an Administrator do that a Power User can't?
By default, an administrator can:
. Install the operating system.
. Install or configure hardware device drivers, although Power Users are allowed to install Print Drivers.
. Install system services.
. Install Service Packs, hotfixes, and Windows Updates.
. Upgrade the operating system.
. Repair the operating system.
. Install applications that modify Windows system files.
. Configure password policy.
. Configure audit policy.
. Manage security logs.
. Create administrative shares.
. Create administrative accounts.
. Modify groups or accounts created by other users.
. Remotely access the registry.
. Stop or start any service.
. Configure services.
. Increase quotas.
. Increase execution priorities
. Remotely shutdown the system.
. Take ownership of arbitrary objects.
. Assign User rights.
. Override a locked computer.
. Format a hard drive.
. Modify system-wide environment variable's
. Access other Users' private data.
. Backup and restore files.
What can a Power User do that a User can't?
A Power User can:
. Create local users and groups.
. Modify users and groups that they have created.
. Create and delete non-administrator file shares.
. Create, manage, delete and share local printers.
. Change system time (default user right).
. Stop or start non auto-started services.
By default, Power Users also have
. Modify access to the Program Files directory.
. Modify access to many locations within the HKEY_LOCAL_MACHINE Software registry hive.
. Write access to most system directories including %windir% and %windir%system32.
These permissions allow Power Users to
. Perform per-computer installation of many applications. For example, applications that do not modify Windows system files or do not modify HKEY_LOCAL_MACHINE System.
. Run legacy applications that improperly store per-user data in per-computer locations (without receiving error messages).
Unfortunately, these permissions are also the same permissions that allow Power Users to
. Plant Trojan horses that, if executed by administrators or other users, can compromise system and data security.
. Make system-wide operating system and application changes that affect other users of the system
Cdlt -- Fabrice Meillon Architecte Infrastructure Division Développeurs et Plate-Forme d'Entreprise Microsoft France
"Barnabo" a écrit dans le message de news:
Bonjour,
j'aimerais savoir exactement ce que peux faire un "utilisateur avec pouvoir" sur sa machine win 2000 pro ?
What can an Administrator do that a Power User can't?
By default, an administrator can:
. Install the operating system.
. Install or configure hardware device drivers, although Power Users
are allowed to install Print Drivers.
. Install system services.
. Install Service Packs, hotfixes, and Windows Updates.
. Upgrade the operating system.
. Repair the operating system.
. Install applications that modify Windows system files.
. Configure password policy.
. Configure audit policy.
. Manage security logs.
. Create administrative shares.
. Create administrative accounts.
. Modify groups or accounts created by other users.
. Remotely access the registry.
. Stop or start any service.
. Configure services.
. Increase quotas.
. Increase execution priorities
. Remotely shutdown the system.
. Take ownership of arbitrary objects.
. Assign User rights.
. Override a locked computer.
. Format a hard drive.
. Modify system-wide environment variable's
. Access other Users' private data.
. Backup and restore files.
What can a Power User do that a User can't?
A Power User can:
. Create local users and groups.
. Modify users and groups that they have created.
. Create and delete non-administrator file shares.
. Create, manage, delete and share local printers.
. Change system time (default user right).
. Stop or start non auto-started services.
By default, Power Users also have
. Modify access to the Program Files directory.
. Modify access to many locations within the HKEY_LOCAL_MACHINE
Software registry hive.
. Write access to most system directories including %windir% and
%windir%system32.
These permissions allow Power Users to
. Perform per-computer installation of many applications. For example,
applications that do not modify Windows system files or do not modify
HKEY_LOCAL_MACHINE System.
. Run legacy applications that improperly store per-user data in
per-computer locations (without receiving error messages).
Unfortunately, these permissions are also the same permissions that allow
Power Users to
. Plant Trojan horses that, if executed by administrators or other
users, can compromise system and data security.
. Make system-wide operating system and application changes that
affect other users of the system
Cdlt
--
Fabrice Meillon
Architecte Infrastructure
Division Développeurs et Plate-Forme d'Entreprise
Microsoft France
"Barnabo" <barnabo92@free.fr> a écrit dans le message de news:
8F45222D-00C7-43E0-8ADE-BC0674397759@microsoft.com...
Bonjour,
j'aimerais savoir exactement ce que peux faire un "utilisateur avec
pouvoir"
sur sa machine win 2000 pro ?
What can an Administrator do that a Power User can't?
By default, an administrator can:
. Install the operating system.
. Install or configure hardware device drivers, although Power Users are allowed to install Print Drivers.
. Install system services.
. Install Service Packs, hotfixes, and Windows Updates.
. Upgrade the operating system.
. Repair the operating system.
. Install applications that modify Windows system files.
. Configure password policy.
. Configure audit policy.
. Manage security logs.
. Create administrative shares.
. Create administrative accounts.
. Modify groups or accounts created by other users.
. Remotely access the registry.
. Stop or start any service.
. Configure services.
. Increase quotas.
. Increase execution priorities
. Remotely shutdown the system.
. Take ownership of arbitrary objects.
. Assign User rights.
. Override a locked computer.
. Format a hard drive.
. Modify system-wide environment variable's
. Access other Users' private data.
. Backup and restore files.
What can a Power User do that a User can't?
A Power User can:
. Create local users and groups.
. Modify users and groups that they have created.
. Create and delete non-administrator file shares.
. Create, manage, delete and share local printers.
. Change system time (default user right).
. Stop or start non auto-started services.
By default, Power Users also have
. Modify access to the Program Files directory.
. Modify access to many locations within the HKEY_LOCAL_MACHINE Software registry hive.
. Write access to most system directories including %windir% and %windir%system32.
These permissions allow Power Users to
. Perform per-computer installation of many applications. For example, applications that do not modify Windows system files or do not modify HKEY_LOCAL_MACHINE System.
. Run legacy applications that improperly store per-user data in per-computer locations (without receiving error messages).
Unfortunately, these permissions are also the same permissions that allow Power Users to
. Plant Trojan horses that, if executed by administrators or other users, can compromise system and data security.
. Make system-wide operating system and application changes that affect other users of the system
Cdlt -- Fabrice Meillon Architecte Infrastructure Division Développeurs et Plate-Forme d'Entreprise Microsoft France
"Barnabo" a écrit dans le message de news:
Bonjour,
j'aimerais savoir exactement ce que peux faire un "utilisateur avec pouvoir" sur sa machine win 2000 pro ?
