Group and user permissions - restricting access on a granular level.

Posted on 2006-04-05
Last Modified: 2012-05-05

Here's my situation:  I have a Helpdesk employee that I want to be able to create users in a particular OU and also create the same user in a particular Group.  I don't want him to have access to change/modify any other groups or any other OUs.

In addition, I'd really prefer that he only has the ability to add a user to the group and change the password.  I don't want him to be able to delete users from the group or OU.

Is there a way to do this without using a script of any sort?

This senario is on a Windows 2003 Server/AD enviornment.

Question by:esckeyrwm
    1 Comment

    Accepted Solution

    What you want to do is right click on the OU and delegate control. There are many settings that you can configure here for a specific OU.

    Hope this helps. Always check your settings in a testing env. before putting them into production.

    Featured Post

    Live: Real-Time Solutions, Start Here

    Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

    Join & Write a Comment

    It is a known fact that servers reach the end of their lives. Some get there quicker than others, based on age, manufacturer, usage and several other factors. However, if your organization has spent time deploying Microsoft's Active Directory server…
    Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
    This video is in connection to the article "The case of a missing mobile phone (". It will help one to understand clearly the steps to track a lost android phone.
    This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

    745 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    15 Experts available now in Live!

    Get 1:1 Help Now