Advertisement

03.04.2008 at 08:27AM PST, ID: 23213096
[x]
Attachment Details

Designing permissions for Admins in Active Directory

Asked by sjones925 in Active Directory, Windows 2003 Server, Windows 2000 Server

Tags: Microsoft, Active Directory, 2003

I am looking to create permissions for some NT Admins to Active Directory and for management of member servers.  They will need limited functionality in AD that I believe will be handled mostly by Account Operators.
I also need them to be able to log into all servers in the domain.  At this point we don't want to give them the full permissions given by Domain Admins or Administrators.  I'm looking for ideas of how best to accomplish this. Can I delegate "log on locally" to a servers OU possibly to accomplish this?  Any ideas or best practices are welcomed.Start Free Trial
[+][-]03.04.2008 at 08:37AM PST, ID: 21042511

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Active Directory, Windows 2003 Server, Windows 2000 Server
Tags: Microsoft, Active Directory, 2003
Sign Up Now!
Solution Provided By: ShimonYK
Participating Experts: 1
Solution Grade: B
 
 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628