Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17


Deligate user to update their self information on AD such as phone number.

Posted on 2009-04-02
Medium Priority
Last Modified: 2012-05-06
I'd like let user to update their particular self user account information such as Phone informaton or Department Information. It seems that it is not allowed by default in AD. I know deligation wizard might help but I'm not sure if it can restrict the access to "self". I don't want user to change another peoples information. Also want to be flexible to permit/restrict updateable field.
Question by:kimakabane
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 2

Expert Comment

ID: 24049383
Best Practices for Delegating Active Directory Administration

In the appendice of this document, you'll find the exact rights necessary. I suppose the right should be given to 'SELF'

Author Comment

ID: 24050329
Thanks, but I hope to know step by step procedure with some example.

Expert Comment

ID: 24050871
on the GPO containing the users, right click on it, and select properties.
Go into security, advanced
Click Add...
type SELF, and click OK
(optional: if users name or account contain 'self', they will show here, so select the one with 'SELF' as RDN, and click OK)
in PERMISSIONS ENTRY FOR USERS: on the Properties Tab,
in Apply onto, select User Objects,
then select the permission/proipery you want to apply.
Once finished, click OK as menay times as necessary to close the windows...
The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.


Expert Comment

ID: 24050896
exemple of permissions you'll find:
'Write General Information', will allow the user to edit his email and phone number...

Expert Comment

ID: 24050910
though I can see there is a specific one for mail and phone too: 'Write Phone and Mail Option'...

Accepted Solution

maze-uk earned 1000 total points
ID: 24050938
I attach a screenshot:

Author Comment

ID: 24051112
Thanks! Very helpful.

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
If you’re involved with your company’s wide area network (WAN), you’ve probably heard about SD-WANs. They’re the “boy wonder” of networking, ostensibly allowing companies to replace expensive MPLS lines with low-cost Internet access. But, are they …
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Want to learn how to record your desktop screen without having to use an outside camera. Click on this video and learn how to use the cool google extension called "Screencastify"! Step 1: Open a new google tab Step 2: Go to the left hand upper corn…
Suggested Courses

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question