Microsoft Knowledge Base Article
This article contents is Microsoft Copyrighted material.
©2005-©2007 Microsoft Corporation. All rights reserved.
Terms
of Use |
Trademarks
Article ID: 955185 - Last Review: October 2, 2008 - Revision: 1.0
Event ID: 560 is logged in the Security log when you audit access to an object on a computer that is running Application Center 2000
On a computer that is running Microsoft Application Center 2000, you configure Group Policy or Local Security Policy to audit access to an object. In this scenario, the following event is logged in the Security log:
Event Category: Object Access
Event ID: 560
Date: date
Time: time
User: Server_name\ACL_server_name
Computer: server_name
Description:
Object Open:
Object Server: SC Manager
Object Type: SERVICE OBJECT
Object Name: RemoteAccess
Handle ID:
Operation ID: {0,3338797}
Process ID: 632
Image File Name: C:\WINDOWS\system32\services.exe
Primary User Name: Primary_user_name
Primary Domain: Primary_domain
Primary Logon ID: (0x0,0x3E7)
Client User Name: ACL_server_name
Client Domain: Server_name
Client Logon ID: (0x0,0x223F5)
Accesses: Query status of service
This issue occurs because of some Application Center 2000 code that enumerates the services on the system to obtain status information. A security template may lock down the system that prevents access
by
unprivileged local accounts.
Note You can safely ignore event ID 560.
The Remote Access service must have the SERVICE_QUERY_STATUS permission for the Authenticated
Users group. You can modify the security template or Group Policy
to obtain the SERVICE_QUERY_STATUS permission for at least the ACL_ account.
To assign permissions for system services, follow these steps:
- Start Active Directory Users and Computers. To do this, click Start, point to Programs, point to Administrative Tools, and then click Active Directory Users and Computers.
- Right-click the organizational unit (OU) that you want, and then click Properties.
- Click the Group Policy tab, click the Group Policy object that you want to modify in the Current Group Policy Objects Links for OU_name list, and then click Edit.
- In the console tree, expand Computer Configuration, and then expand Windows Settings.
- Expand Security Settings, and then click System Services.
- In the details pane, double-click the service to which you want to assign permissions, and then click to select the Define this policy setting check box.
- Click Edit Security, assign the appropriate permissions to the user groups that you want, and then click OK.
- Under Select service startup mode, click the startup mode option that you want, and then click OK.
- Exit the Group Policy Object Editor, click OK, and then exit Active Directory Users and Computers.
APPLIES TO
- Microsoft Application Center 2000 Standard Edition
| kbexpertiseinter kbtshoot KB955185 |
Community Feedback System
Very often, it takes hours to solve a problem. Very often, you've looked high
and low, and have tried a lot of solutions. When you finally found it, chances
are, it was because someone else helped you. Here's your chance to give back.
Use our community feedback tool to let others know what worked for you and what
didn't.
Please also understand that the community feedback system is not warranted to be
correct, it's simply a system that we've built to let people try and help each
other. If something in a feedback response doesn't make sense to you, or you're
not comfortable making changes that the feedback talks about (like registry
edits), please consult a professional.
Thank you for using kbAlertz.com Feedback System.
-- Scott Cate