|
Posted by Morgan che(MSFT on December 20, 2007, 2:36 am
If you were Registered and logged in, you could reply and use other advanced thread options
Dear Customer,
Thanks for your feedback and additional comments.
It is my pleasure to work with you on this issue. Hope to hear from you
again in newsgroup.
Regards,
Sincerely
Morgan Che
Microsoft Online Support
Microsoft Global Technical Support Center
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
--->Thread-Topic: AD Startup Script Containing Password
--->thread-index: AchCcuT/dVd+n4WvQkW+sBRSpzJdUQ==
--->X-WBNR-Posting-Host: 207.46.193.207
--->Subject: RE: AD Startup Script Containing Password
--->Date: Wed, 19 Dec 2007 11:11:01 -0800
--->Lines: 50
--->MIME-Version: 1.0
--->Content-Type: text/plain;
---> charset="Utf-8"
--->Content-Transfer-Encoding: 7bit
--->X-Newsreader: Microsoft CDO for Windows 2000
--->Content-Class: urn:content-classes:message
--->Importance: normal
--->Priority: normal
--->X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.2992
--->Newsgroups: microsoft.public.security
--->Path: TK2MSFTNGHUB02.phx.gbl
--->Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.security:5911
--->NNTP-Posting-Host: tk2msftibfm01.phx.gbl 10.40.244.149
--->X-Tomcat-NG: microsoft.public.security
--->
--->Thanks.
--->We have changed things a bit:
--->
--->We will use a service account for this purpose only.
--->That account will have its credentials in the batch file instead of a
real
--->user's credentials.
--->We will still use a startup script sitting in sysvol, but it will only
call
--->the aforementioned batch file.
--->The batch file will sit on a file server to which no users other than
myself
--->have access, and to which only about 4 computers at a time (via group
--->membership) will have access.
--->Those computers will not be used by anyone other than the 6 of us who
will
--->be doing the deployments.
--->
--->"Morgan che(MSFT)" wrote:
--->
--->>
--->> Dear customer,
--->>
--->> Thanks for your posting here.
--->>
--->> Officially, it is not recommended to run a batch file with your
credential
--->> as startup/logon script. It may disclose your password. As you know,
other
--->> users may get it through accessing the batch file. Even though all
users
--->> accessing this batch files are trustable, password transmission in
the
--->> format of clear text also has exposure risk.
--->>
--->> If this task is necessary, you can code an application which encrypts
your
--->> credentials in a more secure way. Or you can consider other methods
to
--->> avoid exposure of your credentials in production environment.
--->>
--->> Hope this helps. If there is anything unclear, please feel free to
let me
--->> know.
--->>
--->> Have a nice day!
--->>
--->> Sincerely
--->> Morgan Che
--->> Microsoft Online Support
--->> Microsoft Global Technical Support Center
--->>
--->> Get Secure! - www.microsoft.com/security
--->> =====================================================
--->> When responding to posts, please "Reply to Group" via your newsreader
so
--->> that others may learn and benefit from your issue.
--->> =====================================================
--->> This posting is provided "AS IS" with no warranties, and confers no
rights.
--->>
--->>
--->>
--->
|
| Similar Threads | Posted | | Admin password at startup | December 18, 2005, 8:10 am |
| Re: Password Script | April 24, 2008, 5:36 am |
| Re: Password Script | April 24, 2008, 10:30 am |
| Norton on Startup | April 12, 2006, 10:08 am |
| Suspicious StartUp Programs | August 5, 2006, 5:27 pm |
| 'C:\Windows\System32' window pop up at startup | July 4, 2006, 10:52 pm |
| How To enable windows defender to run on startup | July 24, 2006, 11:00 pm |
| certificate Services will not startup on specified port | May 8, 2008, 5:02 pm |
| explorer opens on startup, C:\WINDOWS\SYSTEM32 | June 5, 2007, 2:36 pm |
| Can Malware Automatically Startup in Safe Mode? | December 1, 2008, 3:09 am |
|
XML site map