CleverWorkarounds » 2008 » August » 25

Skip to content
Skip to menu

All in the name of "security"…

Tags: Active Directory,Governance,Offbeat,Risk,Security,SharePoint @ 1:42 am

Here is a recent little story about when, in the name of "security", a really dumb thing was done, and the response that said a lot about the security posture of those behind the response.

A client of mine has 4 servers (2 for an Active Directory domain, and two for SharePoint/SQL server) hosted with an external provider. I was commissioned to perform a fairly standard install of MOSS 2007 enterprise.

My former life in security still influences me to this day, and thus I always build SharePoint in a fairly locked down fashion. So, apart from some strict naming conventions among components, I used a bunch of user accounts to run the various SharePoint services. I made sure that none of which have any privileges over and above what they absolutely require for SharePoint to work.

The install was fairly flawless and was over in a couple of hours, however my client called me half a day later to let me know that search was broken.

Continue reading “All in the name of "security"…”

(4) Comments

Read More

Today is: Tuesday 10 March 2026 -

Subscribe in a reader

Recent Posts
Recent Comments
- Angelina2391 on Rush Blog: Managed metadata support for PowerApps and Flow just dropped!
- Charlie2917 on How to make a PowerApps activity feed via SharePoint search–Part 2
- Danielle495 on Some seriously powerful (and free) PDF functionality in PowerApps and Flow
- Christopher2423 on Getting pics to SharePoint from PowerApps is getting easier…
- 3Win .COM on Troubleshooting PerformancePoint Dashboard Designer Data Connectivity to SharePoint Lists
Translator
August 2008

M T W T F S S

1 2 3

4 5 6 7 8 9 10

11 12 13 14 15 16 17

18 19 20 21 22 23 24

25 26 27 28 29 30 31

« Jul Sep »
Archives
Categories
- 21apps
- Active Directory
- alliance
- Amazon
- Amorphis
- Analysis
- Android
- Application Development
- Apps model
- Assurance
- Award
- Azure
- Azure Functions
- Balsamiq Mockups
- BDC
- Best Practices
- Books
- BPM
- Branding
- Bruno
- Business Analysis
- Business Process Management
- CAML
- Certificates
- Charlie Sheen
- Cisco
- Cloud compouting
- COBiT
- Cognexus
- cognitive bias
- Collaboration
- Collaboration
- Conference
- CSS
- Debategraph
- design thinking
- Dialogue mapping
- Documentum
- EC2
- Envisioning
- Estimating
- EventHandlers
- Exchange
- Facilitation
- Features
- Fiddler
- Finance
- Flow
- Forefront Identity Manager
- Forms Services
- Global Managers
- Globalisation
- Glyma
- Governance
- Hansel
- Heretics Guide
- HPM
- Human Process Management
- IAAS
- IBIS
- IBM
- InfoPath
- Information Architecture
- Infrastructure
- IO9001
- IPSEC
- IRR
- ISO17799/27001
- ISO9001
- Issue Mapping
- ITIL
- JavaScript
- Jeff Conklin
- jQuery
- Knowledge management
- LEAN
- Linksys
- Logparser
- Managed Metadata
- master pages
- Maturity
- Metallica
- Migration
- Monte Carlo
- NETFLOW
- Networking
- Non Linear Process
- NPV
- oAuth
- oData
- Offbeat
- Office 2010
- Office365
- Offline Access
- OpenAPI
- Opeth
- organisational culture
- OSISoft
- page layouts
- Parable
- Patriot Act
- PERFMON
- Performance
- PerformancePoint
- Perth
- PI
- planning
- PnP
- Postman
- Power Automate
- Power Platform
- PowerApps
- PowerShell
- Process Improvement
- Project Management
- Project Management
- real-time
- Records Management
- Recycle bin
- REST
- Reviews
- Risk
- ROE
- ROI
- SaaS
- SamePage
- SAN
- Sarbanes-Oxley
- SBS2008
- SDK
- Search
- Security
- Seven Sigma
- shared understanding
- SharePoint
- SharePoint 2013
- SharePoint Designer
- SharePoint Workspace 2010
- Site Definitions
- Site Templates
- Six Sigma
- SNMP
- social fragmentation
- Solutions
- SP2010
- SPD
- Speaking presentation
- SQL Reporting services
- SQL Server
- SQLIO
- stoos
- Storage
- Strategy
- STSDEV
- Swagger
- systems thinking
- tacit knowledge
- Themes
- Training
- Troubleshooting
- Uncategorized
- user engagement
- User Profiles
- VPC
- VPN
- Web Parts
- Web Services
- Web Services
- web2.0
- WEBDAV
- Wicked Problems
- WIFI
- Windows Performance Analysis Toolkit
- WMI
- Workflow
- Workflow Manager
- Workflows
- Workshop
- Zoolander
Tag Cloud
Branding Branding Series 1 Charlie Sheen Collaboration course CSS datacogs Data Import estimating EventHandlers Excel Features filtered lookups Finance Flow gary jule Governance Information Architecture IRR Mad world master class master pages monte Carlo MOSS NPV Opeth performance planning Power Automate Project Management records managenent Risk roi SharePoint SharePoint Branding SharePoint Features Solutions song SPIADC SPIAIA SPIANL SPIAUK SPITO Training Troubleshooting
Blogroll
Search for:
My Books
Search for:
Recent Posts
Recent Comments
- Angelina2391 on Rush Blog: Managed metadata support for PowerApps and Flow just dropped!
- Charlie2917 on How to make a PowerApps activity feed via SharePoint search–Part 2
- Danielle495 on Some seriously powerful (and free) PDF functionality in PowerApps and Flow
- Christopher2423 on Getting pics to SharePoint from PowerApps is getting easier…
- 3Win .COM on Troubleshooting PerformancePoint Dashboard Designer Data Connectivity to SharePoint Lists
Archives
Categories
- 21apps
- Active Directory
- alliance
- Amazon
- Amorphis
- Analysis
- Android
- Application Development
- Apps model
- Assurance
- Award
- Azure
- Azure Functions
- Balsamiq Mockups
- BDC
- Best Practices
- Books
- BPM
- Branding
- Bruno
- Business Analysis
- Business Process Management
- CAML
- Certificates
- Charlie Sheen
- Cisco
- Cloud compouting
- COBiT
- Cognexus
- cognitive bias
- Collaboration
- Collaboration
- Conference
- CSS
- Debategraph
- design thinking
- Dialogue mapping
- Documentum
- EC2
- Envisioning
- Estimating
- EventHandlers
- Exchange
- Facilitation
- Features
- Fiddler
- Finance
- Flow
- Forefront Identity Manager
- Forms Services
- Global Managers
- Globalisation
- Glyma
- Governance
- Hansel
- Heretics Guide
- HPM
- Human Process Management
- IAAS
- IBIS
- IBM
- InfoPath
- Information Architecture
- Infrastructure
- IO9001
- IPSEC
- IRR
- ISO17799/27001
- ISO9001
- Issue Mapping
- ITIL
- JavaScript
- Jeff Conklin
- jQuery
- Knowledge management
- LEAN
- Linksys
- Logparser
- Managed Metadata
- master pages
- Maturity
- Metallica
- Migration
- Monte Carlo
- NETFLOW
- Networking
- Non Linear Process
- NPV
- oAuth
- oData
- Offbeat
- Office 2010
- Office365
- Offline Access
- OpenAPI
- Opeth
- organisational culture
- OSISoft
- page layouts
- Parable
- Patriot Act
- PERFMON
- Performance
- PerformancePoint
- Perth
- PI
- planning
- PnP
- Postman
- Power Automate
- Power Platform
- PowerApps
- PowerShell
- Process Improvement
- Project Management
- Project Management
- real-time
- Records Management
- Recycle bin
- REST
- Reviews
- Risk
- ROE
- ROI
- SaaS
- SamePage
- SAN
- Sarbanes-Oxley
- SBS2008
- SDK
- Search
- Security
- Seven Sigma
- shared understanding
- SharePoint
- SharePoint 2013
- SharePoint Designer
- SharePoint Workspace 2010
- Site Definitions
- Site Templates
- Six Sigma
- SNMP
- social fragmentation
- Solutions
- SP2010
- SPD
- Speaking presentation
- SQL Reporting services
- SQL Server
- SQLIO
- stoos
- Storage
- Strategy
- STSDEV
- Swagger
- systems thinking
- tacit knowledge
- Themes
- Training
- Troubleshooting
- Uncategorized
- user engagement
- User Profiles
- VPC
- VPN
- Web Parts
- Web Services
- Web Services
- web2.0
- WEBDAV
- Wicked Problems
- WIFI
- Windows Performance Analysis Toolkit
- WMI
- Workflow
- Workflow Manager
- Workflows
- Workshop
- Zoolander