Re: Finding Delegated users ,,,Need Imd Help
- From: Jorge_de_Almeida_Pinto <UseLinkToEmail@xxxxxxxxxxxxxxxxx>
- Date: 23 Jun 2005 14:36:09 -0400
"santosh" wrote:
> Hi All,
> Anyone know how to search for users whom the administrator
> have delegated
> rights to create,delete...etc
> My Administrator has moved to diff department,I have taken
> over and as a
> security concern I would just want to check these,can somebody
> help me on
> this..
> Thanks
> San
Hello,
If you know which groups/users have been delegated permissions but you
don?t know where, you could use DSREVOKE from MS (google for it and
you willl find it)
Another way to search is to search for all defined permissions on OUs
using ADFIND from JOEWARE.NET
adfind -b "DC=<DOMAIN>,DC=<TLD>" -f
"(objectCategory=OrganizationalUnit)" -sddc ntsecuritydescriptor
With this command you can get the security descriptors but they are in
SDDL format and you need to convert that to human readable text.
I at the moment don?t know how to do that, but maybe the guy at
joeware.net know.
For more info on SDDL see
http://www.washington.edu/computing/support/windows/UWdomains/SDDL.html
Cheers
--
Posted using the http://www.windowsforumz.com interface, at author's request
Articles individually checked for conformance to usenet standards
Topic URL: http://www.windowsforumz.com/Active-Directory-Finding-Delegated-users-Imd-Help-ftopict549240.html
Visit Topic URL to contact author (reg. req'd). Report abuse: http://www.windowsforumz.com/eform.php?p=1738135
.
- Follow-Ups:
- Re: Finding Delegated users ,,,Need Imd Help
- From: Cary Shultz [A.D. MVP]
- Re: Finding Delegated users ,,,Need Imd Help
- References:
- Finding Delegated users ,,,Need Imd Help
- From: santosh
- Finding Delegated users ,,,Need Imd Help
- Prev by Date: Re: domain consoldation
- Next by Date: Re: Re: Urgent: W2K3SP1 DC vs. W2K3 DC
- Previous by thread: Re: Finding Delegated users ,,,Need Imd Help
- Next by thread: Re: Finding Delegated users ,,,Need Imd Help
- Index(es):
Loading
