Hi,
I'm looking to design a GPO that will be applied to server 2012 member servers, specifically looking at Security Settings / User Rights at the moment.
Within the group policy that is being applied I have the log on as a service setting set to Contoso\Test1
How does setting this policy for example affect the ability to install IIS/SQL for example?
If I look at RSOP on the member server it shows only Contoso\Test1 within the setting.
If I look at local security policy on the member servers it shows Contoso\Test1 and the domain account that I used to install SQL under, all geyed out.
I am also able to to configure IIS/SQL to use another service account.
My understaning was that if a group policy setting was specifically being applied it would overwrite the local security / local group policy on the member server.
In this case they seemed to be merged. You cannot directly edit the setting in local security / local group policy as they are greyed out but it looks like SQL & IIS are still able to update these settings?
Does this mean I don't have to worry about these settings in group policy? (my concern was if i set something in a group policy) it would mean that we would not be able to install IIS/SQL etc.
Thanks,
Nigel.