Jaime Campos
asked on
Lock down IT Intern accounts
What is the best way to lock down IT-Intern accounts within active directory? I created a group and added them to group. At the root of AD, I went to security and modified IT-Intern group to only Read-Only, however not sure what else I should do. Is this the best way? Thoughts? Thanks.
nimdatx
nimdatx
What do you mean by IT-intern account, can you explain more. What are you trying to achieve?
To start off with... don't allow them to be administrators of their computers. Other then that they are pretty much like regular employees aren't they? There is no hard and fast rule as far as what you allow and what you don't. Each company is different. You sometimes have to decide and implement on the fly.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Then use the delegate control wizard to assign these permissions to their group.