Solved

how to disable 'protected' group

Posted on 2010-09-08
4
314 Views
Last Modified: 2012-05-10
Within our AD sctructure, I've discovered that a security group named "company employees" has been protected. Get-ADGroup -LDAPFilter "(objectcategory=group)(admincount=1)" proved this to be true.

This is preventing our help desk from changing passwords. I understand this isn't desired by any means. I'm just trying to fix it. How can I un-protect this group?
0
Comment
Question by:rareguy
  • 2
  • 2
4 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
Comment Utility
You can set admincount back to 0 using adsiedit

This is all because of adminsdholder and the DS team had a good entry on it

http://blogs.technet.com/b/askds/archive/2009/05/07/five-common-questions-about-adminsdholder-and-sdprop.aspx

They linked to Michael Smith's blog which is also worth reading.

Thanks

Mike
0
 

Author Comment

by:rareguy
Comment Utility
Thanks, giving that a try
0
 

Author Comment

by:rareguy
Comment Utility
That worked, Thanks!
0
 
LVL 57

Expert Comment

by:Mike Kline
Comment Utility
Excellent, good work to make the change
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
Resolve DNS query failed errors for Exchange
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now