Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 749
  • Last Modified:

Owners cannot change Distribution Group Members

I have many, many users that cannot change members of their distribution groups through the GAL.
The check box for "Manager can update membership list" is checked in Active Directory.
The security permissions also show that the user has "write members" selected as a property and no denies.
If given access to the Active Directory Users and Computers MMC, the user (logged in as them) can change the membership list. It only appears that it will not work when the users try changing them in the GAL.
Any ideas at all?
0
tcole333
Asked:
tcole333
  • 2
1 Solution
 
manikandadevanCommented:
Hi,
I personally would do this with RBAC and create a custom role group. I would recommend placing your distribution groups in certain OU's and set your scope to OU. The one thing I love about RBAC is that it can get as granular as you would like to.
0
 
tcole333Author Commented:
Turns out, I figured this out!!!
I appreciate the response Manikandadevan....

The answer that worked for us is that we have a forest root domain with 2 child domains.
Users are located in both of the child domains. Users in a site were connecting to a GC (root domain or the other child domain) that did not hold a writable copy. We created a reg key defining the GC that held a writeable copy.
Hope this helps someone else.
0
 
tcole333Author Commented:
figured out the problem and added a reg key to fix.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now