AdminSDHolder thread - How can I block??
- From: jxxrzt@xxxxxxxxx
- Date: 14 Sep 2005 17:27:30 -0700
Is there any to block the update or refresh generated by the
AdminSDHolder thread from being applied to an individual user in one of
the protected groups? For example, a user who's a domain admin (User1)
wishes to grant another user (User2) "send as" permissions on his
mailbox. Every hour or so User2 "disappears" from the security tab of
User1 in effective removed from the ACL of User1. The options seem to
be to add "send as" permissions for User2 to the AdminSDHolder
container (I've tried this on my testbed but haven't quite got it to
work even though the user permissions did "trickle down" to the groups
and users) or remove the user from the domain admins groups and reset
the admin count attribute. What I really want to do is just "block"
changes for this one particular user, without affecting how
AdminSDHolder is being applied to other groups and users. Possible or
not? TIA
-Jim
.
- Follow-Ups:
- Re: AdminSDHolder thread - How can I block??
- From: Joe Richards [MVP]
- Re: AdminSDHolder thread - How can I block??
- From: Deji Akomolafe
- Re: AdminSDHolder thread - How can I block??
- Prev by Date: Re: Client Machine cannot see Active Directory
- Next by Date: Re: Client Machine cannot see Active Directory
- Previous by thread: Re: Default Domain Policy "Defaults"
- Next by thread: Re: AdminSDHolder thread - How can I block??
- Index(es):
Relevant Pages
|
Loading
