Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Net User HUGE security problem?

Status
Not open for further replies.
kopar

kopar

IS-IT--Management
Dec 30, 2003
23
US
Whoa! Call me a total noob, but isn't the NET USER, NET GROUP and other such commands a tremendous security problem in an Active Directory Domain?

Out of the box, any computer/user joined to the domain can do some pretty nifty things... Like ADD THEMSELVES TO THE DOMAIN ADMINS GROUP!

That's bad, mmkay. How in the world do I stop domain users from doing that, but still allow command prompt use?

HELP! I feel naked!

--Tom
 
Sort by date Sort by votes
If your security is setup properly, then the net user command won't work for a domain user. My suggestion would be to setup your domain, apply your domain group policy, then as a "domain user", try it. You will be suprised at the results.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ravalos
  • Locked
  • Question
Problem with PDFs in IIS
Replies
1
Views
1K
gbaughma
gbaughma
rzammit82
  • Locked
  • Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
962
suncit
suncit
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
838
DrB0b
DrB0b
DTGMI
  • Locked
  • Question
WIN 10 Pro PC & Adding back to our Network
Replies
0
Views
613
DTGMI
DTGMI
penguinroundup
  • Locked
  • Question
programmatically delete all saved passwords for IE for any user
Replies
0
Views
336
penguinroundup
penguinroundup

Part and Inventory Search

Sponsor

Back
Top