Re: Blocking "Enterprise Admins" permissions
From: Chriss3 [MVP] (noSpamHere_at_chrisse.se)
Date: 07/06/04
- Next message: Jim Singh: "Re: Company splitting -- need domain advice"
- Previous message: anonymous_at_discussions.microsoft.com: "Very Slow Login"
- In reply to: Jim Singh: "Blocking "Enterprise Admins" permissions"
- Next in thread: Jim Singh: "Re: Blocking "Enterprise Admins" permissions"
- Reply: Jim Singh: "Re: Blocking "Enterprise Admins" permissions"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 6 Jul 2004 20:26:59 +0200
You can not* restrict Enterprise Admins Group and should not do so, Its a
protected group. How ever if you not trust the members of the enterprise
admin group remove them and try to find another delegation method. You
should only select member that you trust to be Enterprise Admins.
-- Regards Christoffer Andersson Microsoft MVP - Directory Services No email replies please - reply in the newsgroup ------------------------------------------------ http://www.chrisse.se - Active Directory Tips "Jim Singh" <jsingh07@hotmail.com> skrev i meddelandet news:OGatCQ4YEHA.3844@TK2MSFTNGP10.phx.gbl... > Hi - > does anyone knows of possible implications of restricting/blocking the > "Enterprise Admins" security group permissions from child level domain > besides the DHCP pool auth, child domain creation, ADC etc? > > does blocking "EA" group from child domain has any impact on replication ? > and are there any other serious implications ? i.e. attribute/class > dependencies etc? > thanks! > >
- Next message: Jim Singh: "Re: Company splitting -- need domain advice"
- Previous message: anonymous_at_discussions.microsoft.com: "Very Slow Login"
- In reply to: Jim Singh: "Blocking "Enterprise Admins" permissions"
- Next in thread: Jim Singh: "Re: Blocking "Enterprise Admins" permissions"
- Reply: Jim Singh: "Re: Blocking "Enterprise Admins" permissions"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
Loading
