TANDBERG TELEPRESENCE MANAGEMENT SUITE SECURE SERVER - CONFIGURATION GUIDE 13.0 Configuration Manual - page 23
Securing Windows Server 2003 tasks
Cisco TMS Secure Server Configuration Guide 13.0
Page 23 of 34
Policy
Security Setting
Generate security audits
(SeAuditPrivilege)
LOCAL SERVICE, NETWORK SERVICE
Impersonate a client after
authentication
(SeImpersonatePrivilege)
Administrators, IIS_WPG, SERVICE
Increase scheduling priority
(SeIncreaseBasePriorityPrivilege)
Administrators
Load and unload device drivers
(SeLoadDriverPrivilege)
Administrators
Lock pages in memory
(SeLockMemoryPrivilege)
Log on as a batch job
(SeBatchLogonRight)
IIS_WPG, LOCAL SERVICE, SUPPORT_388945a0,
ASPNET, IUSR_
SQLServer2005MSSQLUser$ComputerName$InstanceName
Log on as a service
(SeServiceLogonRight)
NETWORK SERVICE,
SQLServer2005MSSQLUser$ComputerName$InstanceName,
tmsserviceuser
Manage auditing and security log
(SeSecurityPrivilege)
Administrators
Modify firmware environment values
(SeSystemEnvironmentPrivilege)
Administrators
Perform Volume Maintenance
Tasks (SeManageVolumePrivilege)
Administrators
Profile single process
(SeProfileSingleProcessPrivilege)
Administrators
Profile system performance
(SeSystemProfilePrivilege)
Administrators
Remove computer from docking
station (SeUndockPrivilege)
Administrators
Replace a process level token
(SeAssignPrimaryTokenPrivilege)
LOCAL SERVICE, NETWORK SERVICE,
SQLServer2005MSSQLUser$ComputerName$InstanceName,
IWAM_
Restore files and directories
(SeRestorePrivilege)
Administrators
Shut down the system
(SeShutdownPrivilege)
Administrators
Synchronize directory service data
(SeSynchAgentPrivilege)
Take ownership of files or other
objects
(SeTakeOwnershipPrivilege)
Administrators
Security options
The security options section is used to configure various security settings including LAN manager
authentication level and logon prompts. Go to Windows Start > Control Panel > Administrative
Tools > Local Security Policy >Local Policy > Security Options.