Restrict who can add users to the group Domain Admins
Hi Guys,
In the domain admins group, we have the following situation:
--------------------------
<Individual user accounts>
<Group accounts>
So, for example,
--------------------------
Bob
Sue
Steve
Server Admins group
What I want to be able to do is to restrict who can add or delete members of the domain Admins group.
So, for example, is there a way to stop current members of the domain admins group from adding or deleting members of the domain admins group?
What is the best way to do this?
Thanks everyone.
In the domain admins group, we have the following situation:
--------------------------
<Individual user accounts>
<Group accounts>
So, for example,
--------------------------
Bob
Sue
Steve
Server Admins group
What I want to be able to do is to restrict who can add or delete members of the domain Admins group.
So, for example, is there a way to stop current members of the domain admins group from adding or deleting members of the domain admins group?
What is the best way to do this?
Thanks everyone.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
motnahp00
If you do not trust somebody then delegate permissions accordingly for a domain user.
ASKER
So, you delegate this permission to add or remove a user and or group from the domain admins group to a user?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for that guys