Re: global local security group question
- From: "ptwilliams" <ptw2001@xxxxxxxxxxx>
- Date: Tue, 12 Apr 2005 19:54:09 +0100
> Now, should I create local groups in AD and assign the global group as a
> member of the local group and then assign the local group access to the
> directories on the file server?
This is the recommended best practice, but this is mainly for environments
whereby there's multiple domains. When AD was first released, I think that
the idea was there would be several domains --recent security discoveries,
and the evolution of AD have changed this design. Therefore, in single
domains there doesn't seem very much point in adding global to local and
permissions to local...
--
Paul Williams
http://www.msresource.net/
http://forums.msresource.net/
.
- References:
- global local security group question
- From: Mike Brearley
- global local security group question
- Prev by Date: Re: Enterprise root CA's certificate
- Next by Date: Re: Defaulting to Control access through remote access policy?
- Previous by thread: Re: global local security group question
- Next by thread: RE: global local security group question
- Index(es):
Relevant Pages
|
Loading
