RE: mmc
From: Numpty (Numpty_at_discussions.microsoft.com)
Date: 01/06/05
- Next message: DigitalPaul: "RE: Windows Update "Check for Updates" link dosen't work anymore"
- Previous message: Numpty: "RE: Print Event ID 3, over and over in server system event log."
- In reply to: peter: "mmc"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 5 Jan 2005 21:11:01 -0800
Have you "delegated control" to the OU that he can reset passwords on?
If you do this he can ONLY reset passwords and nothing else unless you
specify it.
As he gets more savvy you can rerun the delegate control wizard and add
rights he is signed off on.
To my knowledge you can't disable right click, but if he hasn't got
permission to do the tasks listed on the right click then he won't be able to
(not sure if it is shown or not.)
If you only want him to be able to see that OU in the mmc, then select the
OU and go to the Action Menu > New Window From Here.
Minimise the windows in the MMC and close the full AD Console and save the
Console as a new MMC. This way he can't simply minimise and view everything.
You will want to do this in author mode, and if you want it so he can't stuff
about, change the MMC to run in User Mode, Limited Access, Single Window
Hope this helps.
There may also be a Group policy setting for the right click question but
I'm pretty sure it doesn't exist.
"peter" wrote:
> I have just tried creating an mmc for our trainee. We have server 2003 and
> 2000/xp clients. He is using XP.
>
> I would like the trainee to reset passwords only. But every time I create
> the mmc, the right click is still enabled so he sees everything. Can you
> disable the right click, if so how?
>
> Thanks
>
>
- Next message: DigitalPaul: "RE: Windows Update "Check for Updates" link dosen't work anymore"
- Previous message: Numpty: "RE: Print Event ID 3, over and over in server system event log."
- In reply to: peter: "mmc"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
