Summary of Security Attributes
Applies To: Windows Server 2003 with SP1
This section outlines the various objects and their associated security attributes needed to ensure that NLB runs successfully. This section lists the minimum security requirements. If the security attributes are made more restrictive, NLB may not run. If the security attributes are less restrictive, it may result in malicious attacks being able to compromise the cluster or corrupt end-user data. We recommend that the security attributes on the objects not be changed from the default settings.
Directory and file protection
| Object | Description | Minimum recommended security attributes |
|---|---|---|
<filespec> |
NLB Manager host list file |
BUILTIN\Administrators: Full control |
System resources
The cluster service uses other system resources that are protected by default.
| Object | Description | Minimum recommended security attributes |
|---|---|---|
HKLM\* |
HKLM registry hive |
SYSTEM:Full control BUILTIN\Administrators: Full control |