Installation Guide
EMSRV uses an existing Windows NT/2000 account to provide file access
restrictions. The Windows NT/2000 account name used by EMSRV is
referred to as the EMSRV account name, and the password for that
account is referred to as the EMSRV account password. Both
the Windows NT/2000 account from which EMSRV is started (that is, if EMSRV is
not started as a service) and the EMSRV account must be granted the advanced
user right Act as part of the operating system and be a member of
the Administrators group.
The following steps cover how to set and activate this right for Windows
NT:
- Log on as Administrator.
- Run the User Manager utility by selecting Administrative Tools
(Common) > User Manager from the Start menu.
- Select the EMSRV user and then select Polices > User
Rights. The User Manager window opens.
- From the Policies menu, select User Rights.
The User Rights Policy window opens.
- Select the check box Show Advanced User Rights.
- From the Right drop-down box, select Act as part of the
operating system.
- Select the Add push button and add the EMSRV user to the
list.
- Select OK to save your choices and close the open
windows.
- Log off from the Administrator account and log on again as the EMSRV
user.
Use the following directions to set and activate this right for
Windows 2000:
- Log on as Administrator.
- Run the User Rights Assignment utility by selecting Administrative Tools
from the Control Panel.
- Select Local Security Policy > Local Policies
> User Rights Assignment > Act as part of the
operating system.
- Click on the Add push button and add the EMSRV user to the
list.
- Click on the Add push button to add the user and save your
choices.
- Log off from the Administrator account and log on again as the EMSRV
user.
For Windows 2000 Server, the Local Security Policy may be
overridden by the Domain Controller Security Policy or the
Domain Security Policy. User rights for the domain
controller and/or domain may need to be set in order for the Effective
Policy Setting in the Local Security Policy to appear
checked.
For Windows 2000 Advanced Server, there is no Local Security
Policy. Assign the right for the Domain Controller Security
Policyand Domain Security Policy as necessary.
Authentication for the EMSRV account is slightly different when
authenticating clients. In each case, additional user rights ay be
required for successful operation.
- To start and stop EMSRV as a service, both the account from which EMSRV is
started and the EMSRV account must have the Log on as a service
user right assigned. For each account, you must also ensure that the
Deny logon as a service right is not set.
- To start and stop EMSRV interactively or from a batch file, both the
account from which EMSRV is started and the EMSRV account must have the
Log on locally user right. for each account, you must also
ensure that the Deny logon locally right is not set.
- Each client authenticated by EMSRV must have the Access this computer
from the network right set for the account used by that client.
For each account, you must also ensure that the Deny access to this
computer from the network right is not set.
[ Top of Page | Previous Page | Next Page | Table of Contents | Index ]