[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

How do I disable Remote access for a DOMAIN ADMIN

Posted on 2011-03-18
2
Medium Priority
?
696 Views
Last Modified: 2012-05-11
Need assistance with understanding which permissions, etc. to disable so a domain admin account user does not have access to a RAS server.

Thanks in advance for your help.
cj
0
Comment
Question by:cslinger
2 Comments
 
LVL 31

Accepted Solution

by:
Justin Owens earned 2000 total points
ID: 35166006
You don't.

If you don't want someone to access your RAS server, they should not have domain admin permissions.

Create a new group, put that user in it, and allow that group the permissions it needs, but don't block domain admins.

DrUltima
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 35166162
In addition to what Justin said even if you block them they can undo or backout of anything you do to try and block them...limit your DA's if you can.

Thanks

Mike

0

Featured Post

The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
Sometimes it necessary to set special permissions on user objects.  For instance when using a Blackberry server, the SendAs permission needs to be set. I see many admins struggle with the setting that permission only to see it disappear within a few…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

608 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question