How can I allow a Limited User to change TCP/IP settings, while strictly maintaining the principle of least privilege?

windows-xp networking windows-server-2003 ip-address
10,427

Would this do?

http://support.microsoft.com/kb/297938

Method 2: If the User Has a Local Account

  1. In the MMC snap-in, open Computer Management located in the Administration Tools folder.
  2. Expand the Local Users and Groups node, and then click Groups.
  3. In the right pane, double-click Network Configuration Operators.
  4. Click Add
  5. Enter the user to be added, and then click OK.
  6. Click OK to close the Network Configuration Operators Properties window.

Computer management can also be found under the Administrator tools menu

Share:
10,427

Related videos on Youtube

Iszi
Author by

Iszi

This is a canary message, to be removed in the case of my death. If you're reading this, I haven't died yet. Then again, how would you know? I mean, how could I possibly delete this message after my own demise? You know what? Just go ahead and assume I'm dead. Any posts appearing to be made by me are from an impostor who's stolen my identity post-mortem, and only further prove the fact that I am dead. After all, why would I even think to post a canary message if I was expecting to be alive to remove it anyway? In any case, I'm still not the droid you're looking for.

Updated on September 17, 2022

Comments

  • Iszi
    Iszi over 1 year

    In Windows XP or Windows Server 2003:

    I have a laptop configured with software for network-based vulnerability scanning of systems. The reason this is put on a laptop instead of a desktop or server, is to check systems that normally operate independently of a network, or are on remote isolated networks.

    Since this laptop's primary purpose entails travel between networks, all users of the system will need access to change the TCP/IP configuration. Within our department, that's not an issue. We're all Administrators on this system for maintenance purposes anyway.

    However, we plan on loaning this system out to other departments or organizations from time to time. Obviously, we do not want these other groups to have full privileges on the system if they don't need them. As far as I can tell, the only Administrator-like privilege they should need is to change the IP Address, Subnet Mask, Gateway, and DNS Servers.

    How can this be done for Limited Users, without giving them any more privileges from the higher groups?

  • Iszi
    Iszi over 13 years
    That looks good to me. Thanks! One addendum: To access the Local Users and Groups console, I generally recommend [Start->Run, lusrmgr.msc]. I've found this is the quickest and most universally-applicable method of running that snap-in.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Removed Computer from domain, cannot log in to re-add computer. to domain
I can ping server by name but can't map drive to it
How can i assign multiple IP addresses to an NIC (possibly software solution)?
Accessing HTTP server from any network Flutter
Get IP Mask from IP Address and Mask Length in Python
Find closest IP
Copy Files quickly from a mapped network drive
Jax-ws java.net.ConnectException: Connection refused
small ip scanner code in java
how to map skydrive as network drive in windows xp?