Skip to content
This repository has been archived by the owner on May 24, 2023. It is now read-only.

acc05

Jump to bottom
My Random Thoughts edited this page Jul 6, 2017 · 5 revisions

c-acc-05-service-logon-accounts (Enabled)

Checks all services to ensure no user accounts are assigned. If specific application service accounts are required then they should be domain level accounts (not local) and restricted from interactice access by policy.

Input Values

  • IgnoreTheseUsers - List of known user or groups accounts to ignore

Example

IgnoreTheseUsers = ('NT AUTHORITY\\NetworkService', 'NT AUTHORITY\\LocalService', 'LocalSystem')

Input Descriptions

  • None

Result And Messages

  • PASS
    No services found running under a local accounts

  • WARNING

  • FAIL
    One or more services was found to be running under local accounts

  • MANUAL

  • NA

Applies To

  • All Servers

Required Functions

  • None
Home | GUI Tool ||| Accounts | Compliance | Drives | Hyper-V-Host | Network | Regional | Security | System | Virtual

Helpful Links

Check Sections

Clone this wiki locally