Re: Access Rights to See DACLs in ADAM

---

• From: "Lee Flight" <lef@xxxxxxxxxxxxxxx>
• Date: Thu, 25 May 2006 16:10:20 +0100

---

Hi

the problem with Access_Sys_Sec is what I was trying to explain
with regard to SACL. Are you saying that:

with the Windows account in the configuration Admin role
if you request a security descriptor with the SACL box unchecked
you do not get the DACL in the security editor UI?

Thanks
Lee Flight


"Jeffrey Harris" <1Jeffrey1.1Harris1@xxxxxxxxxxxxxxxx> wrote in message
news:17BB3B50-44B2-4196-B2C2-E26EC6A9C2D7@xxxxxxxxxxxxxxxx

As to your questions below, I am using LDP to access the security
descriptors, and even though the ADAM service account has been added to
the
Administrators group in the configuration partition, I still see audit
failures relating to Read_Control and Access_Sys_Sec in the security log.

.

---

• References:
  • Re: Access Rights to See DACLs in ADAM
    • From: Lee Flight
  • Re: Access Rights to See DACLs in ADAM
    • From: Jeffrey Harris

• Prev by Date: Re: Access Rights to See DACLs in ADAM
• Next by Date: Re: Migration of AD from Win2k to Windows 2003
• Previous by thread: Re: Access Rights to See DACLs in ADAM
• Next by thread: Re: Access Rights to See DACLs in ADAM
• Index(es):
  • Date
  • Thread

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(17)