Solved

Windows Domain (2008) DHCP and Group Policy Management Permissions

Posted on 2016-08-17
3
58 Views
Last Modified: 2016-08-17
What permissions do users need to be able to administer DHCP (changing a reservation, deleting a lease, and so on) remotely?

What permissions do users need to be able to administer the Group Policy Management of a domain from their Windows clients?
0
Comment
Question by:GR JN
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 22

Accepted Solution

by:
Joseph Moody earned 500 total points
ID: 41759410
1. Be a member of the AD group DHCP Administrators
2. Be a member of the AD group Group Policy Creator Owners
0
 
LVL 17

Expert Comment

by:pjam
ID: 41759411
Sorry,
I would not recommend doing either.  One mistake and everyone pays.
0
 

Author Comment

by:GR JN
ID: 41759413
Would this create an audit trail/event log on the actual DHCP and Group Policy servers?
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question