[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

AD Delegation

Posted on 2014-03-06
2
Medium Priority
?
261 Views
Last Modified: 2014-03-07
I want to Delegate Permissions to a Security Group in AD. Now I only want these permissions to be on certain OU's. Is there a way to quickly do this or automate it?

Right now I am manually doing each OU and it is just taking awhile.
0
Comment
Question by:Shawn
2 Comments
 
LVL 30

Expert Comment

by:Rich Weissler
ID: 39910148
Have you considered using powershell?  (Of course, like almost everything that involves scripting, it'll take a while and some effort to get the automation set up, but should be faster after that.)
0
 
LVL 2

Accepted Solution

by:
allen_rich earned 1500 total points
ID: 39911736
To use the given below script:

$ou = "AD:\OU=Users,DC=contoso,DC=com"

$group = Get-ADGroup MyGroup
$sid = new-object System.Security.Principal.SecurityIdentifier $group.SID

$acl = get-acl $ou

$ace = new-object System.DirectoryServices.ActiveDirectoryAccessRule $sid,"GenericAll, ","Allow"

$acl.AddAccessRule($ace) set-acl -aclobject $acl $ou

and You can read this article for more information about this.
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Suggested Courses

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question