Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 813
  • Last Modified:

Active Directory custom permissions

Our IT department is setting up a new Windows 2003 server with Active Directory for the organisation. We have a custom built CRM solution which runs on PHP under Windows 2003 server + IIS. The CRM has it's own permissions structure using a MySQL database, but I would like to integrate it with the new Active Directory server. In order to do that, I would need to setup custom permissions in Active Directory which could then be accessed (via LDAP) at user authentication and used for the CRM.

1) How can I create custom permissions in Active Directory to be used by the CRM software?

2) If it's not possible to create permissions, is it possible to create custom fields for each user?

Any advice or comments appreciated.
0
under_dog
Asked:
under_dog
1 Solution
 
Kevin HaysIT AnalystCommented:
I would probably try and start out with creating new security groups, using windows authentication/ldap.

I would rather go that route if possible than trying to modify the schema.  Here are some links though.

http://www.petri.co.il/add_additional_attributes_to_user_objects.htm
http://www.petri.co.il/add_user_account_information_to_dsa.htm
http://www.petri.co.il/basic_adsi_scripting.htm
http://www.petri.co.il/editing_additional_attributes_of_user_objects.htm
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now