Owners cannot change Distribution Group Members

I have many, many users that cannot change members of their distribution groups through the GAL.
The check box for "Manager can update membership list" is checked in Active Directory.
The security permissions also show that the user has "write members" selected as a property and no denies.
If given access to the Active Directory Users and Computers MMC, the user (logged in as them) can change the membership list. It only appears that it will not work when the users try changing them in the GAL.
Any ideas at all?
tcole333Asked:
Who is Participating?
 
tcole333Connect With a Mentor Author Commented:
Turns out, I figured this out!!!
I appreciate the response Manikandadevan....

The answer that worked for us is that we have a forest root domain with 2 child domains.
Users are located in both of the child domains. Users in a site were connecting to a GC (root domain or the other child domain) that did not hold a writable copy. We created a reg key defining the GC that held a writeable copy.
Hope this helps someone else.
0
 
manikandadevanCommented:
Hi,
I personally would do this with RBAC and create a custom role group. I would recommend placing your distribution groups in certain OU's and set your scope to OU. The one thing I love about RBAC is that it can get as granular as you would like to.
0
 
tcole333Author Commented:
figured out the problem and added a reg key to fix.
0
All Courses

From novice to tech pro — start learning today.