A key reason for these changes has to do with User Account Control.
ALLOW UNDOCK WITHOUT HAVING TO LOG ON MEANING WINDOWS
Follow these steps to access User Rights Assignment policies in the Local Security Settings console:Įxpand the Local Polices node in the left pane, and then click the User Rights Assignment node, as shown in Figure 10-6.įigure 10-6: Using the Local Security Settings console to manage User Rights Assignment policiesĪs Table 10-2 shows, the default user rights have changed substantially between Windows XP and Windows Vista. User Rights Assignment policies determine what a user or group can do on a computer. Navigating User Rights Assignment Changes Table 10-1: Comparing Audit Policy in Windows XP and Windows Vistaĭefault Security Setting in Windows Vista In Windows Vista, however, successful logons are tracked for all types of accounts. As the table shows, in Windows XP, auditing is not enabled by default. Table 10-1 provides an overview of the default Audit Policy configuration used in Windows XP and Windows Vista. Type secpol.msc in the Open text box, and then click OK.Įxpand the Local Polices node in the left pane, and then click the Audit Policy node, as shown in Figure 10-5.įigure 10-5: Using the Local Security Settings console to manage Audit Policy You can follow these steps to access Audit Policy in the Local Security Settings console:Ĭlick Start, point to All Programs, Accessories, and then click Run. By enabling auditing policies, you can configure security logging to track important security events, such as when a user logs on to the computer or when a user changes account settings.
The sections that follow discuss changes to Audit Policy, User Rights Assignment, and Security Options.Īudit Policy is used to collect information regarding resource and privilege use. To manage Local Group Policy on a local computer, you can access security settings by using the Security Configuration Management console. To manage Active Directory Group Policy, you can use the Group Policy Object Editor or the Group Policy Management Console.
Some of the most far reaching changes have to do with security settings for local policies, which can be managed through Active Directory Group Policy or through Local Group Policy. To improve computer security and harden the operating system against attack, Windows Vista modifies many areas of the local computer security configuration.