无法在没有密码的帐户下运行服务? [英] Can't run a service under an account which has no password?

问题描述

如果服务的登录"帐户有密码，我就可以正确启动服务.但是当我删除用户密码并重试时，出现错误:错误 1069:由于登录失败，服务没有启动"

I can start the service correctly if the service's "Log on" account has a password. But when I remove the user password and try again, I got the error: "Error 1069: The service did not start due to a logon failure"

不能在密码为空的帐户下运行服务吗?

Can't a service runs under an account with empty password?

推荐答案

默认情况下，所有现代版本的 Windows 都有一个本地安全策略，该策略限制使用空白密码的用户只能在本地控制台上登录.换句话说，密码为空的用户必须亲自在计算机上才能登录.用户无法以服务、批处理用户、网络等身份登录.

By default all modern versions of Windows have a Local Security policy that restricts users with blank passwords to logging on at the local console only. In other words, a user with a blank password must physically be at the computer in order to log on. The user cannot log on as a service, as a batch user, over a network, etc.

这可以通过更改本地策略 -> 安全选项下的策略来更改.或者通过将 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa 下的 LimitBlankPasswordUse 值更改为零.

This can be changed by changing the policy under Local Policies -> Security Options. Or by changing the LimitBlankPasswordUse value under HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa to zero.

但是，这非常重要，这会给您的安全造成严重漏洞，因为使用空白密码的用户现在可以远程登录，而且空白密码很容易被猜到.我想不出有任何理由在没有密码的帐户下运行服务，所以我的建议是 - 不要这样做.

But, and this is very important, this will set up a serious hole in your security since users with blank passwords will now be able to log on remotely and blank passwords are pretty easy to guess. I can't think of any reason to have a service run under an account with no password, so my recommendation would be - don't do it.

这篇关于无法在没有密码的帐户下运行服务?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！