JernejS
asked on
SBS 2003 resets inheritance of security entries from OU to User records.
I'm trying to workaround SendAs permissions problem introduced by the last Exchange patch on our SBS 2003.
It affects Research in Motion BlackBerry Enterprise Server (BES) and other simmilar systems.
Recomendation in MS KB 912918 was to add service account additional rights to OU container for the users that needs BES service, but the problem is that SBS seems to periodically dissable the "Allow inheritable permissions from the parent to propagate to this object and all child objects. Include this with entities explicitly defined here." in AD Users and Computers MCC.
This reset happens every few hours.
Do you know how to dissable this reset?
regards, nejc
It affects Research in Motion BlackBerry Enterprise Server (BES) and other simmilar systems.
Recomendation in MS KB 912918 was to add service account additional rights to OU container for the users that needs BES service, but the problem is that SBS seems to periodically dissable the "Allow inheritable permissions from the parent to propagate to this object and all child objects. Include this with entities explicitly defined here." in AD Users and Computers MCC.
This reset happens every few hours.
Do you know how to dissable this reset?
regards, nejc
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Terrific! Glad you got it working... If you've ever worked with AD before and are used to creating OUs for everything, it can be difficult to grasp SBS's concepts... but once you do, as you have, it's obvious that these things work well. Especially considering you have to make sure that everything is set in so many places if you don't use the tools provided! :-)
Jeff
TechSoEasy
Jeff
TechSoEasy
ASKER
thanks for your quick answer, the idea with new security group is great, modifying Mobile Template is even better...
Works fine now.
Regards,
Nejc