ralfk/zettelkasten
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
c4fb9fc531
zettelkasten/OneNoteExport/Technik/Dokumentation/Konzepte/05_OU SYS unter rights.md
Ralf Koop c4fb9fc531 Initial commit
2023-08-17 19:32:37 +02:00

12 KiB
Raw Blame History

OU SYS unter rights

Dienstag, 23. Januar 2018

14:05

 

Computergenerierter Alternativtext: ADFS AZA CDC-I CDC-P Domain Controllers F8D MON SCCM SCRIPT Type Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Organizational Unit Description RED ZONE - AD Federation Service BLUE ZONE - Azure Automation Hybrid Worker BLUE ZONE - BLUE ZONE - Delivery Controller BLUE ZONE - \"BLUE ZONE - Citrix Delivery Controller\" BLUE ZONE - ASG Claud Factory RED ZONE - Citrix Infrastructure Servers User Rights Assignments in Domain Controllers Securtiy Configuration Policy red ZONE RED ZONE RED ZONE RED ZONE RED ZONE RED ZONE RED ZONE RED ZONE RED ZONE - delete File Servers GIT Monitoring Server Private Key Infrastructure Servers SCCM Scripting Hosts SQL Servers Remote Desktop Services Servers SQL SYS SYS SYS SYS SYS SYS BLACK Deny log on as a batch job BLACK Deny log on as a service BLACK Deny log on locally BLACK Deny log on through Remote Desktop Services BLACK Lacal Administrators \*SYS BLUE Deny log on as a batch job \*SYS BLUE Deny log on as a service \*SYS BLUE Deny log on locally \*SYS BLUE Deny log on through Remote Desktop Services \*SYS BLUE Lacal Administrators SYS SYS SYS SYS SYS SYS SYS SYS SYS SYS GREEN Deny log on as a batch job GREEN Deny log on as a service GREEN Deny log on locally GREEN Deny log on through Remote Desktop Services GREEN Lacal Administrators RED Deny log on as a batch job RED Deny log on as a service RED Deny log on locally RED Deny log on through Remote Desktop Services RED Local Administrators Security Group Security Group Security Group Security Group Security Group - Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group - Security Group Security Group Security Group Security Group Security Group Security Group Security Group - Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Domain Lo\... Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies Rights Assignment within Group Policies {width="10.291666666666666in" height="8.375in"}

 

Erfasster Bildschirmausschnitt: 23.01.2018 14:05

 

AZA unter SYS

 

 

Computergenerierter Alternativtext: Type Organizational Unit \*SYS CEN-SRV-AZA Act as a part of the operating system \*SYS CEN-SRV-AZA Adjust memory quotas for a Process \*sys CEN-SRV-AZA Allow log on locally \*SYS CEN-SRV-AZA Back up files and directories \*SYS CEN-SRV-AZA Bypass traverse checking \*SYS CEN-SRV-AZA Create global objects \*sys CEN-SRV-AZA Debug programs \*SYS CEN-SRV-AZA Impersonate a client after authentication \*SYS CEN-SRV-AZA Local Administrators \*SYS CEN-SRV-AZA Lock Pages in memory \*SYS CEN-SRV-AZA Log on as a batch job \*SYS CEN-SRV-AZA Log on as a service \*SYS CEN-SRV-AZA Manage auditing and securit,\' log \*SYS CEN-SRV-AZA Perform volume maintenance tasks \*sys CEN-SRV-AZA Remote Desktop Users \*SYS CEN-SRV-AZA Replace a Process Ievel token \*SYS CEN-SRV-AZA Restore files and directories \*SYS CEN-SRV-AZA Shut down the system \*SYS CEN-SRV-AZA Take ownership of files or ather objects Security Group Security Group Security Group Security Group Security Group Security Group - Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group - Security Group Security Group Security Group Security Group Security Group - Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Description BLUE ZONE - Azure Automation Hybrid Worker SeTcbPriviIege SelncreaseQuotaPriviIege SelnteractiveLogonRight Se8ackupPriviIege SeChangeNotifyPriviIege SeCreateGIobaIPriviIege SeDebugPriviIege Selmpersonateprivilege I - 5-32-344 Members SeLockMemoryPriviIege Se8atchLogonRight SeServiceLogonRight SeSecurityPriviIege SeManageVoIumePriviIege I -5-32-555 Members SeAssignPrimaryTokenPriviIege SeRestorePriviIege SeShutdownPriviIege SeTakeOwnershipPriviIege {width="10.197916666666666in" height="5.041666666666667in"}

 

Erfasster Bildschirmausschnitt: 23.01.2018 14:08

 

 

HW

 

 

Computergenerierter Alternativtext: BLUE RED \*SYS CEN-SRV-AZA-HW Act as a part of the operating system \*SYS CEN-SRV-AZA-HW Adjust memory quotas for a Process \*sys CEN-SRV-AZA-HW Allow log on locally \*SYS CEN-SRV-AZA-HW Back up files and directories \*SYS CEN-SRV-AZA-HW Bypass traverse checking \*sys CEN-SRV-AZA-HW Create global objects \*sys CEN-SRV-AZA-HW Debug programs \*SYS CEN-SRV-AZA-HW Impersonate a client after authentic\... \*SYS CEN-SRV-AZA-HW Lacal Administrators \*SYS CEN-SRV-AZA-HW Lock Pages in memory \*sys CEN-SRV-AZA-HW Log on a Batch job \*sys CEN-SRV-AZA-HW Log on \*SYS CEN-SRV-AZA-HW Manage auditing and securit,\' log \*SYS CEN-SRV-AZA-HW Perform volume maintenance tasks \*sys CEN-SRV-AZA-HW Remote Desktop Users \*SYS CEN-SRV-AZA-HW Replace a Process Ievel token \*SYS CEN-SRV-AZA-HW Restore files and directories \*SYS CEN-SRV-AZA-HW Shut down the system \*SYS CEN-SRV-AZA-HW Take ownership of files or ather obj\... Organizational Unit Organizational Unit Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Domain Local Domain Lacal Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Domain Lacal Domain Lacal Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Domain Lacal Domain Lacal Domain Local BLUE ZONE - Azure Automation Hybrid Worker RED ZONE - Azure Automation Hybrid Worker SeTcbPriviIege SelncreaseQuotaPriviIege SelnteractiveLogonRight Se8ackupPriviIege SeChangeNotifyPriviIege SeCreateGIobaIPriviIege SeDebugPriviIege Selmpersonateprivilege I - 5-32-344 Members SeLockMemoryPriviIege Se8atchLogonRight SeServiceLogonRight SeSecurityPriviIege SeManageVoIumePriviIege I -5-32-555 Members SeAssignPrimaryTokenPriviIege SeRestorePriviIege SeShutdownPriviIege SeTakeOwnershipPriviIege {width="9.395833333333334in" height="4.5in"}

 

Erfasster Bildschirmausschnitt: 23.01.2018 14:09

 

 

Computergenerierter Alternativtext: Type \*SYS CEN-SRV-AZA-HW BLUE Actasa part of the operating Security Group - \*SYS CEN-SRV-AZA-HW BLUE Adjust memory quotas for a P\... Security Group \*sys CEN-SRV-AZA-HW BLUE Allow log on locally Security Group - \*sys CEN-SRV-AZA-HW BLUE gack up files and directories Security Group \*sys CEN-SRV-AZA-HW BLUE Bypass traverse checking Security Group \*sys CEN-SRV-AZA-HW BLUE Create global objects Security Group \*sys CEN-SRV-AZA-HW BLUE Debug programs Security Group \*SYS CEN-SRV-AZA-HW BLUE Impersonate a client after aut\... Security Group \*sys CEN-SRV-AZA-HW BLUE Administrators Security Group \*sys CEN-SRV-AZA-HW BLUE Lock pages in memor„ Security Group \*sys CEN-SRV-AZA-HW BLUE Log on asa batchjob Security Group - \*sys CEN-SRV-AZA-HW BLUE Log Security Group \*SYS CEN-SRV-AZA-HW BLUE Manage auditing and security\... Security Group \*SYS CEN-SRV-AZA-HW BLUE Perform volume maintenance\... Security Group \*sys CEN-SRV-AZA-HW BLUE Remote Desktop Users Security Group \*SYS CEN-SRV-AZA-HW BLUE Replace a Process Ievel token Security Group \*sys CEN-SRV-AZA-HW BLUE Restore files and directories Security Group \*sys CEN-SRV-AZA-HW BLUE down the system Security Group \*sys CEN-SRV-AZA-HW BLUE Take ownership of files oth\... Security Group - Domain Local Domain Lacal Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Domain Local Domain Lacal Domain Local Description SeTcbPriviIege SelncreaseQuotaPriviIege SelnteractiveLogonRight Se8ackupPriviIege SeChangeNotifyPriviIege SeCreateGIobaIPriviIege SeDebugPriviIege Selmpersonateprivilege I - 5-32-344 Members SeLockMemoryPriviIege Se8atchLogonRight SeServiceLogonRight SeSecurityPriviIege SeManageVoIumePriviIege I -5-32-555 Members SeAssignPrimaryTokenPriviIege SeRestorePriviIege SeShutdownPriviIege SeTakeOwnershipPriviIege {width="8.833333333333334in" height="4.395833333333333in"}

 

Erfasster Bildschirmausschnitt: 23.01.2018 14:10

 

 

Computergenerierter Alternativtext: \*SYS CEN-SRV-AZA-HW RED Act as a part of the operating s\... \*SYS CEN-SRV-AZA-HW RED Adjust memory quotas for a Pr\... \*sys CEN-SRV-AZA-HW RED Allow log on locally \*sys CEN-SRV-AZA-HW RED gack up files and directories \*sys CEN-SRV-AZA-HW RED Bypass traverse checking \*sys CEN-SRV-AZA-HW RED Create global objects \*sys CEN-SRV-AZA-HW RED Debug programs \*SYS CEN-SRV-AZA-HW RED Impersonate a client after auth\... \*sys CEN-SRV-AZA-HW RED Local Administrators \*sys CEN-SRV-AZA-HW RED Lock pages in memor„ \*sys CEN-SRV-AZA-HW RED Log on asa batchjob \*sys CEN-SRV-AZA-HW RED Log on \*SYS CEN-SRV-AZA-HW RED Manage auditing and securit,\' I\... \*SYS CEN-SRV-AZA-HW RED Perform volume maintenance \*sys CEN-SRV-AZA-HW RED Remote Desktop Users \*SYS CEN-SRV-AZA-HW RED Replace a Process Ievel token \*SYS CEN-SRV-AZA-HW RED Restore files and directories \*sys CEN-SRV-AZA-HW RED Shut down the system \*sys CEN-SRV-AZA-HW RED Take ownership of files othe\... Type Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group - Domain Local Domain Lacal Domain Lacal Domain Local Domain Lacal Domain Lacal Domain Local Domain Lacal Domain Local Domain Lacal Domain Lacal Domain Local Domain Lacal Domain Lacal Domain Local Domain Lacal Domain Local Domain Lacal Domain Local Description SeTcbPriviIege SelncreaseQuotaPriviIege SelnteractiveLogonRight Se8ackupPriviIege SeChangeNotifyPriviIege SeCreateGIobaIPriviIege SeDebugPriviIege Selmpersonateprivilege I - 5-32-344 Members SeLockMemoryPriviIege Se8atchLogonRight SeServiceLogonRight SeSecurityPriviIege SeManageVoIumePriviIege \*S- 1-5-32-555 Members SeAssignPrimaryTokenPriviIege SeRestorePriviIege SeShutdownPriviIege SeTakeOwnershipPriviIege {width="8.40625in" height="4.354166666666667in"}

 

Erfasster Bildschirmausschnitt: 23.01.2018 14:10

 

 

Computergenerierter Alternativtext: SYS_CEN-SRV AZA-HW-RED Act as a part of Attribute Editor Managed Nama SYS CEN-SRV-AZA-HW Act as a part of the operatin SVC DEV/C Halp {width="4.395833333333333in" height="5.1875in"}

 

Erfasster Bildschirmausschnitt: 23.01.2018 14:12