Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 348
  • Last Modified:

Restricting privledges on AD for a user.

Hi

We use windows 2003 server AD . I have a staff who has  joined our  support department  and i want to give him access to AD. He should have limited access to AD permissions only change user passwords.He should nor be allowed to create users delete users or delete any objects in the AD.

How to i configure this any tutorials will be helpful.

Thanks
0
lianne143
Asked:
lianne143
  • 2
  • 2
3 Solutions
 
lianne143Author Commented:
He will be accessing AD from  XP PCs  around the network . Do i need to install Admin Tools on all the  PC in the network to access AD
0
 
Premkumar YogeswaranAnalyst II - System AdministratorCommented:
Yes.. u need to install Admin pak..

Create group in AD and give delegated permission to that group and add the user to that group..

Regards,
Prem
0
 
Premkumar YogeswaranAnalyst II - System AdministratorCommented:
0
 
dave_itCommented:
You'll only need to install the Adminpak on the PC which the user will logon to.  But I wouldn't do that until after you've run the Delegation of Control wizard in AD and given the user the permissions you want.
0
 
lianne143Author Commented:
sorted
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now