Solved

Logging onto a Windows 2003 Domain Controller

Posted on 2011-03-14
3
295 Views
Last Modified: 2012-05-11

I've always been a Domain Admin and or Administrator of the domain, so logging on to setup or resolve a printer issue hasn't been an issue.  

We have a new desktop person and we want them to be able to logon and work on printers.  Seems like this may be a challenge and that having the printers on the DC is an issue as only Domain Admins or Administrators are able to logon. Is that correct?  If so, any suggestions on how to resolve this?

Thanks,
RP
0
Comment
Question by:rotarypwr
3 Comments
 
LVL 3

Expert Comment

by:Vinamilk1001
Comment Utility
Hello ,

Try to put this person on the AD built-in group named "Server operators " and "Print operators , it delegate right to person make action on DC without to have the privilege to modify AD .

Second option is to have a dedicated Print Server or migrate the printers on another servers.
 
Rgds.
0
 
LVL 34

Accepted Solution

by:
Seth Simmons earned 500 total points
Comment Utility
to allow an ordinary user to logon to a domain controller, you change the domain controller security policy.  if it's at the console, add that user to 'allow logon locally' or for rdp access 'allow logon through terminal services'
0
 
LVL 37

Expert Comment

by:Neil Russell
Comment Utility
You have identified the problem yourself. You "Should" be moving the printer role off the AD and onto a member server.

Alowing ANYBODY except a domain admin access to your domain controllers is a very risky business.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Join & Write a Comment

By this time the large percentage of day-to-day transactions have shifted to mobile banking; here are some overriding areas QAs must investigate while testing mobile banking apps.  
Never store passwords in plain text or just their hash: it seems a no-brainier, but there are still plenty of people doing that. I present the why and how on this subject, offering my own real life solution that you can implement right away, bringin…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now