?
Solved

Active directory password reset permisson

Posted on 2011-09-08
1
Medium Priority
?
285 Views
Last Modified: 2012-05-12
Dear All,

  I have windows two 2003 domain controllers dc1, dc2 and one windows 2008 domain controller dc3, I have moved my FSMO to the new windows 2008 dc 3, I have two account users which are member of the account operrator, some times they have access deny message when they try to reset the password for some users, when I login it as domain admin Im able to change the passwords, i checked some users account and found that account operator groups does not have permission on them, I have tried delegation and give only the password reset option, can someone advise with the steps to grant my help desk access to reset all users accounts, please note that soon I will be adding one more windows 2008 DC and remove windows 2003 dcs

Thanks
0
Comment
Question by:ITMaster1979
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 24

Accepted Solution

by:
Sandeshdubey earned 1000 total points
ID: 36508946
0

Featured Post

Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses
Course of the Month8 days, 8 hours left to enroll

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question