Re: problem delegating some user management power to a group
From: Chriss3 [MVP] (noSpamHere_at_chrisse.se)
Date: 07/21/04
- Next message: Chriss3 [MVP]: "Re: problem delegating some user management power to a group"
- Previous message: Michel B.: "Re: problem delegating some user management power to a group"
- In reply to: Michel B.: "Re: problem delegating some user management power to a group"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 21 Jul 2004 22:42:34 +0200
Michel, its not dumb at all,
What the Delegation Of Control Wizard dose is to modify the security for the
particular object you delegate the control of
If you right click the object and click properties, click security tab to
show the delegated security, If there is no Security tab, click View menu in
AD Users and Computers, click view Advanced Features.
-- Regards Christoffer Andersson Microsoft MVP - Directory Services No email replies please - reply in the newsgroup ------------------------------------------------ http://www.chrisse.se - Active Directory Tips "Michel B." <mbruyere.nospam@ezemcanada.com> skrev i meddelandet news:u$H2491bEHA.716@TK2MSFTNGP11.phx.gbl... > Hi I just did that and it worked. This may sound dumb but... > How do I look at the delegated controls? > > > "Chriss3 [MVP]" <noSpamHere@chrisse.se> wrote in message > news:OkmzC41bEHA.2660@TK2MSFTNGP12.phx.gbl... > > You have to delegate the reset password right. > > > > -- > > Regards > > Christoffer Andersson > > Microsoft MVP - Directory Services > > > > No email replies please - reply in the newsgroup > > ------------------------------------------------ > > http://www.chrisse.se - Active Directory Tips > > > > "Michel B." <mbruyere.nospam@ezemcanada.com> skrev i meddelandet > > news:Oefdkz1bEHA.3944@tk2msftngp13.phx.gbl... > > > Hi, > > > > > > I'm actually working to give our technicians some power over user in > > > active directory. I've been quite successful as of now but I just got a > > > problem that I can't figure out. Let me explain what I want to achieve: > > > > > > > > > > > > I have a group for the technicians (let call it "technicians"), I did > add > > > this group to the UO where my users objects are stored (UO called > > > MTL_users). > > > > > > I gave the group the following rights > > > > > > List contents > > > > > > read all properties > > > > > > write all properties > > > > > > read permissions > > > > > > > > > > > > I did block the inheritance from parent but applied to childs by > selecting > > > "This object and all child objects". > > > > > > > > > > > > Everything is working fine except when a technician tries to reset a > > > password, he gets an access denied. > > > > > > > > > > > > Is there a way to allow the group technicians to reset password W/O > having > > > to put membership in "account operator" which my manager find has too > much > > > power for techies. He doesn't want them to create/delete account etc... > > > > > > > > > > > > Thanks for your help! > > > > > > > > > > > > > > > > > > M.Bruyere > > > > > > > > > > > > > > > > > > > > >
- Next message: Chriss3 [MVP]: "Re: problem delegating some user management power to a group"
- Previous message: Michel B.: "Re: problem delegating some user management power to a group"
- In reply to: Michel B.: "Re: problem delegating some user management power to a group"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
