/
Set restrictive service security client task
Set restrictive service security client task
- Max Pinion (Deactivated)
- Mike Murphy
Owned by Max Pinion (Deactivated)
Arellia has two built-in tasks that set security descriptors and will accomplish most of what you are trying to accomplish:
- Set Restrictive Service Security Client Task - removes the ability for Administrators to stop or modify a service.
- Set Standard Service Security Client Task - sets the service security to the Windows default, giving Administrators the ability to stop or modify a service.
This document explains how to set up the restrictive service security.
To apply the Set Restrictive Service Security, do the following steps:
- In the Thycotic Security Manager, click the Tasks tab.
- In the file library in the left pane, navigate to Tasks > Client Tasks > Local Security > Set Restrictive Service Security Client Task.
- Clone the client task (optional).
- In the right pane under Settings, select the Service you want to target (such as the Arellia Agent).
- Set the security descriptor to a custom one.
- Click Save.
- Select Run Now and execute the task on endpoints.
, multiple selections available,
Related content
Set Restrictive Service Security Client Task
Set Restrictive Service Security Client Task
More like this
How to secure the Arellia Agents
How to secure the Arellia Agents
More like this
Create service security descriptor for Administrators (read only)
Create service security descriptor for Administrators (read only)
More like this
Service hardening
Service hardening
More like this
Service Hardening
Service Hardening
More like this
Application Control agent configuration
Application Control agent configuration
More like this