无法在没有密码的帐户下运行服务? [英] Can't run a service under an account which has no password?
问题描述
如果服务的登录"帐户有密码,我就可以正确启动服务.但是当我删除用户密码并重试时,出现错误:错误 1069:由于登录失败,服务没有启动"
I can start the service correctly if the service's "Log on" account has a password. But when I remove the user password and try again, I got the error: "Error 1069: The service did not start due to a logon failure"
不能在密码为空的帐户下运行服务吗?
Can't a service runs under an account with empty password?
推荐答案
默认情况下,所有现代版本的 Windows 都有一个本地安全策略,该策略限制使用空白密码的用户只能在本地控制台上登录.换句话说,密码为空的用户必须亲自在计算机上才能登录.用户无法以服务、批处理用户、网络等身份登录.
By default all modern versions of Windows have a Local Security policy that restricts users with blank passwords to logging on at the local console only. In other words, a user with a blank password must physically be at the computer in order to log on. The user cannot log on as a service, as a batch user, over a network, etc.
这可以通过更改本地策略 -> 安全选项下的策略来更改.或者通过将 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa 下的 LimitBlankPasswordUse 值更改为零.
This can be changed by changing the policy under Local Policies -> Security Options. Or by changing the LimitBlankPasswordUse value under HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa to zero.
但是,这非常重要,这会给您的安全造成严重漏洞,因为使用空白密码的用户现在可以远程登录,而且空白密码很容易被猜到.我想不出有任何理由在没有密码的帐户下运行服务,所以我的建议是 - 不要这样做.
But, and this is very important, this will set up a serious hole in your security since users with blank passwords will now be able to log on remotely and blank passwords are pretty easy to guess. I can't think of any reason to have a service run under an account with no password, so my recommendation would be - don't do it.
这篇关于无法在没有密码的帐户下运行服务?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!