Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Allow workgroup users to assign premissions on domain account

Posted on 2009-05-19
8
Medium Priority
?
329 Views
Last Modified: 2013-12-04
We' have a AD domain (Windows 2K3, SP2), 1 PC located at workgroup for some reason, 1 day, the user reported that her share was no longer avaiable. Here's what we observed:
under security tab, originally premission for particular domain user account was translated into "unknown user" and SID; When I press the "Add" in order to add back the premission again, under "object types", "computers" options was not there; under "location", it just allow me to select workgroup PC only. And according to our users, they could select computers and users on the domain before. But I just cann't figure out how it should be.

I've tried to enable the "Allow anonymous SID/Name Transaltion" from our AD's security policy, but it doesn't work.

The users requests to add premissions for particular domain users for some purpose. She doesn't want to add identical local user in her PC as she don't want too local account.

How I could archive this? & What's going wrong here?
1.GIF
0
Comment
Question by:lamtl354
  • 4
  • 4
8 Comments
 
LVL 11

Expert Comment

by:Abhay Pujari
ID: 24421161
Are you doing this on a client machine? If yes, then you need to authenticate to the domain firse By going to start--run and type \\yourdomainname. Type username and password of admin account of the domain, then try this addition.
0
 

Author Comment

by:lamtl354
ID: 24422746
I will tried tommorrow. Thx~
0
 

Author Comment

by:lamtl354
ID: 24427886
To abhvp, it's the same. In the ACL dialog box, no matter "Location" or "Object Type" or even type username@domain_name, it fails to locate domain users.



0
Lessons on Wi-Fi & Recommendations on KRACK

Simplicity and security can be a difficult  balance for any business to tackle. Join us on December 6th for a look at your company's biggest security gap. We will also address the most recent attack, "KRACK" and provide recommendations on how to secure your Wi-Fi network today!

 
LVL 11

Expert Comment

by:Abhay Pujari
ID: 24430889
What about typing \\yourdomainname in run dialog box? Does it prompt you for address? Also check your DNS server whether it contains records for this computer.

0
 

Author Comment

by:lamtl354
ID: 24460775
When I type \\domain, it doesn't prompt anything & allow me to access certain resources. I've checked w/ the client computer doesn't use domain credential. It shows only some "share" on that server, which opens to everyone.
0
 
LVL 11

Expert Comment

by:Abhay Pujari
ID: 24516497
Ok. If I am not wrong you have granted permissions to this computer account and now it seems that everything is changed. Do you remember the last time when it was working? Also have you done nay changes since then to this?
0
 

Accepted Solution

by:
lamtl354 earned 0 total points
ID: 24569644
To abhvp, sorry the setting is made by workmate who left the company years, and nobodies in the office remembered.
0
 
LVL 11

Expert Comment

by:Abhay Pujari
ID: 24569656
ok. Is it possible for you to join this machine to the domain?
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as high-speed processing of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
Unable to change the program that handles the scan event from a network attached Canon/Brother printer/scanner. This means you'll always have to choose which program handles this action, e.g. ControlCenter4 (in the case of a Brother).
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

783 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question