We recently had some issues with installing updates that were resolved by
reassigning the "Manage auditing and security log" user right to
administrators.
The problem is that the organization I supports requires strict separation
of duties between administrators and security managers, and we need to
prevent administrators from tampering with auditing or security logs.
Is there a reason that this user right is specifically needed to install
Windows Updates? Is there a workaround? If not, can Microsoft consider
changing a future version of automatic updates to not require this particular
user right?
Thanks.
--
Jeffrey Harris, MCSE W2K and W2K3.
Please remove the '1's from the e-mail address before sending.
|
Similar Threads
Linear Mode
