Re: Active Directory Permissions
- From: "Paul Bergson" <pbergson@xxxxxxxxxxxxxxxxx>
- Date: Tue, 8 Aug 2006 07:57:15 -0500
Don't randomly just hand over the keys to the LAN (Making them the same as
you) because in the end you will be held responsible for problems and will
probably have to fix any errors.
Learn what they need to do, change passwords, enable accounts, create users,
etc... and provide them the least amount of privelge from the definition of
their job.
Once this has been defined Delegate Control to a security group and then
make users a member of this group, this way as people come and go all you
have to do is change membership of the group..
--
Paul Bergson MCT, MCSE, MCSA, Security+, CNE, CNA, CCA
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.
"Wirelondon" <Wirelondon@xxxxxxxxx> wrote in message
news:1155015181.887393.214010@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I have been asked by manager to setup access for the Helpdesk Team to
access the Active Directory.
I need some advice, as I asked what access should I give the Helpdesk
team he replied "give them same access as you" But I don't want
them having full control.
Our helpdesk team is 3 people who look after all 1st line & 2nd line
support issues.
Has anyone else been asked to grant people access, but not wanting to
give them full control?
Many thanks
Phil
.
- References:
- Active Directory Permissions
- From: Wirelondon
- Active Directory Permissions
- Prev by Date: renaming a computer
- Next by Date: Re: gethostbyname
- Previous by thread: Re: Active Directory Permissions
- Next by thread: Re: Active Directory Permissions
- Index(es):
Relevant Pages
|
