Solved

User restrictions on a windows 2003 domain

Posted on 2009-07-15
4
408 Views
Last Modified: 2012-05-07
Hi,

Is there a way of giving access to certain parts of computer (on a domain) without adding the users domain account to the local admin account on their computer?
I want to give them some access, but not complete access.
I have noticed things like network connection properties are limited and installation rights.
Any advice would be appreciated.
0
Comment
Question by:Dan560
  • 2
  • 2
4 Comments
 
LVL 4

Expert Comment

by:MattShadbolt
ID: 24866802
network properties are avalible to the Network Configuration Operators on the local machine. I would create a domain group and add that group to the local NCO group. Then you can just add the users to the domain group and they'll have access to network settings on that local computer.
0
 
LVL 2

Author Comment

by:Dan560
ID: 24866816
What about installing softare? Do you generally let standard users have this right?
I am finding it quite hard to keep people happy, we run a helpdesk and I do not want to restrict users too much.
0
 
LVL 4

Accepted Solution

by:
MattShadbolt earned 500 total points
ID: 24866838
they'd need local admin access to install software.. I'd suggest not letting them install software anyway - will cause more issues than it will solve.

If they're IT guys then you have to put the burden on them... if they NEED to have local admin rights, they need to take responsibility if they install something they shouldn't. It shouldn't be on you to rebuild their machine if they break it - and make sure management know that if they introduce a virus its not your fault.
0
 
LVL 2

Author Comment

by:Dan560
ID: 24866855
Thanks for your advice
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
Learn about cloud computing and its benefits for small business owners.
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question