Description of Default Security Settings in Windows 2000

Article translations Article translations
Article ID: 217050 - View products that this article applies to.
This article was previously published under Q217050
This article has been archived. It is offered "as is" and will no longer be updated.
Expand all | Collapse all

On This Page

SUMMARY

This article describes some of the default security settings in Windows 2000.

MORE INFORMATION

Some of the default security settings in Windows 2000 include:

Clean Installation

Windows 2000 Professional and Windows 2000 Server (Configured as a Member Server)

  • Users (members of the Everyone and Users groups) do not have broad write access to the system as in Microsoft Windows NT 4.0 and earlier. Such users have read access to most parts of the system and write access only under their own profile folders.
  • Power Users (members of the Power Users group) have all the access that normal users and power users have in Windows NT 4.0 and earlier. Such users have write access to parts of the system besides their own profile folders. This enables them to install programs, and more.
  • Administrators have all the access they have always had.

Windows 2000 Server (Configured as a Domain Controller)

  • Users do not have broad write access to the system. Such users have read access to most parts of the system and write access only under their own profile folders. Such users can only access domain controllers over the network. Local logon to domain controllers is denied.
  • Server Operators, Account Operators, and other built-in groups have the same access as in Windows NT 4.0 and earlier.
  • Administrators have all the access they have always had.

Upgrades

Computers upgraded from Windows NT 4.0 do not use the new default security settings described above. Instead, all existing security settings are maintained.

For more information, refer to the "Default Access Control Settings in Windows 2000" white paper that is located at the following Microsoft Web site:
http://technet.microsoft.com/en-us/library/Bb742509.aspx
In the event that the URL for this white paper has moved, you can search the white paper at the following Microsoft Web site:
http://www.microsoft.com/windows2000

Properties

Article ID: 217050 - Last Review: October 14, 2013 - Revision: 5.3
APPLIES TO
  • Microsoft Windows 2000 Server
  • Microsoft Windows 2000 Advanced Server
  • Microsoft Windows 2000 Professional Edition
  • Microsoft Windows 2000 Datacenter Server
Keywords: 
kbnosurvey kbarchive kbenv kbinfo KB217050

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com