Solved

Adding non-domain users to active directory

Posted on 2011-03-03
4
444 Views
Last Modified: 2012-05-11
We currently have a small windows 2003 domain setup where all the users are internal employees. We are looking to create a new class of user accounts that are external customers. This group of accounts would be held under active directory for maintenance only. (Another application will pull the account info from here using ldap). In other words, these accounts would have no access to any internal domain resources.  

I'm not sure how to procede with this. Should this all take place on a seperate server on a completely different domain or could I somehow intergrate these accounts into our  current envirionment ?

Thanks,
Bill


0
Comment
Question by:billmx
4 Comments
 
LVL 3

Accepted Solution

by:
IamTheMorsa earned 500 total points
ID: 35027517
You can create an OU for those accounts, create the accounts, don't put them in group memberships and then change their default membership to something other than domain users.  You could create a group call "external users" and then assign those users to that group as their default group.

You could create a whole new AD domain, but that might be over kill for what you are trying to do.  It really depends on your needs and what is required.
0
 

Author Comment

by:billmx
ID: 35346846
Creating a new OU worked perfectly. It keeps those accounts seperate from our internal accounts so the distiction is clear. Thanks !
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 37433043
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Companies that have implemented Microsoft’s Active Directory need to ensure that the Active Directory is configured and operating properly. If there are issues found and not resolved, it eventually leads the components to fail or stop working and fi…
Installing a printer using group policy preferences is not that hard let’s take a look at it. First lets open up your group policy console and edit the policy you want to add it to. I recommend creating a new policy for each printer makes it a l…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now