?
Solved

Restricting privledges on AD for  a user.

Posted on 2011-03-06
5
Medium Priority
?
344 Views
Last Modified: 2012-05-11
Hi

We use windows 2003 server AD . I have a staff who has  joined our  support department  and i want to give him access to AD. He should have limited access to AD permissions only change user passwords.He should nor be allowed to create users delete users or delete any objects in the AD.

How to i configure this any tutorials will be helpful.

Thanks
0
Comment
Question by:lianne143
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 

Author Comment

by:lianne143
ID: 35046069
He will be accessing AD from  XP PCs  around the network . Do i need to install Admin Tools on all the  PC in the network to access AD
0
 
LVL 17

Accepted Solution

by:
Premkumar Yogeswaran earned 1336 total points
ID: 35046437
Yes.. u need to install Admin pak..

Create group in AD and give delegated permission to that group and add the user to that group..

Regards,
Prem
0
 
LVL 17

Assisted Solution

by:Premkumar Yogeswaran
Premkumar Yogeswaran earned 1336 total points
ID: 35046445
0
 
LVL 6

Assisted Solution

by:dave_it
dave_it earned 664 total points
ID: 35061512
You'll only need to install the Adminpak on the PC which the user will logon to.  But I wouldn't do that until after you've run the Delegation of Control wizard in AD and given the user the permissions you want.
0
 

Author Closing Comment

by:lianne143
ID: 35194059
sorted
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question