Solved

Looking for info on ADUC Tools

Posted on 2011-09-08
3
239 Views
Last Modified: 2012-05-12
I have an issue where i need to give permission to a Supervisor to due password resets and also modify group membership. I do not want to give the full access to ADUC, not for trust reasons just for the lack of IT knowledge and the harm they could cause. So does any one know of a good program that wold allow this.
0
Comment
Question by:Kelly-Brady
  • 2
3 Comments
 
LVL 27

Accepted Solution

by:
KenMcF earned 250 total points
ID: 36506046
Why not just delegate the proper psrmissions neede to the OUs where the users and groups are located. You could also create a taskpad view to those OUs.

http://www.windowsecurity.com/articles/Implementing-Active-Directory-Delegation-Administration.html

http://www.petri.co.il/create_taskpads_for_ad_operations.htm
0
 

Author Comment

by:Kelly-Brady
ID: 36506057
Would that not require me to put ADUC on there machines?
0
 
LVL 27

Expert Comment

by:KenMcF
ID: 36506083
Yes you can install the 2003 admin tools or the RSAT depending on the version of OS. But the user will only have rights that you delegate to the user or groups they are in. Not full access.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now