Restricting Login Access
All servers should be configured to allow only administrators to physically log in to the console. By default, such use is restricted on systems such as Active Directory domain controllers, but other servers such as SharePoint servers and SQL servers must specifically forbid these types of logins. To restrict login access, follow these steps:
- Choose Start, All Programs, Administrative Tools, Local Security Policy.
- In the left pane, navigate to Security Settings, Local Policies, User Rights Assignment.
- Double-click Allow Log On Locally.
- Remove any users or groups that do not need access to the server, as shown in Figure 15.1. Click OK when finished.
Figure 15.1. Restricting login access to a SharePoint server.
Get Microsoft SharePoint 2010 Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
