No formal product support is available from Microsoft for this Beta product. For information about obtaining support for a Beta release, please see the documentation included with the Beta product files, or check the Web location from which you downloaded the release. The information in this article applies to:
SYMPTOMS
When you install OLAP Services version 7.0 on a Windows 2000 computer, all of the local computer users receive administrators rights to administer OLAP Services. This occurs because of behavior changes in the defaults of the registry system of Windows 2000. Windows 2000 now inherits the security permission of the parent node in the registry tree, which causes all of the local computer users to have administrators rights. CAUSEThe Win32 function SetNamedSecurityInfo works differently in Windows 2000 than in previous versions of Windows NT. A new flag PROTECTED_DACL_SECURITY_INFORMATION has been introduced in Windows 2000 that you need to use in order to prevent registry keys from inheriting a parent key security setting. WORKAROUNDTo work around this behavior, download the following file and run it on your Windows 2000 server: OLAPRegFix.exeThis utility sets the correct permission for the following registry keys: HKEY_LOCAL_MACHINE\Software\Microsoft\OLAP Server\CurrentVersion\SECURITY - restricts it for special access (Query Value + Read Control) to OLAP Administrators. HKEY_LOCAL_MACHINE\Software\Microsoft\OLAP Server\Server Connection Info - restricts it for Full Control to OLAP Administrators. HKEY_LOCAL_MACHINE\Software\Microsoft\OLAP Server\Olap Manager Info - restricts it for Full Control to OLAP Administrators. Additional query words: win 2k win2k w2k win2000 reg rights permissions
Keywords : kbSQLServ700 kbOLAP |
|
Last Reviewed: November 4, 1999 © 2000 Microsoft Corporation. All rights reserved. Terms of Use. |