Re: What is the best way to restrict access to Domain Admins on certain folders?

Relevant Pages

• Re: Domain Admin Access across Trusted domains
  ... > users to a Domain Local security group, I can't add that Domain Local ... Much, not all, can be conferred my making members of the ... same as making them members of Domain Admins. ... >>> The trust is a two way external trust. ...
  (microsoft.public.win2000.security)
• Re: Domain Admin Access across Trusted domains
  ... users to a Domain Local security group, I can't add that Domain Local ... security group to the Domain Global group "Domain Admins" ... ... > not attempting to next externals into your globals. ... >> The trust is a two way external trust. ...
  (microsoft.public.win2000.security)
• RE: software to control domain administrators
  ... "Does anyone know any software to control, audit, or restrict access or privileges to domain administrators." ... I will restate my mantra differently, If you can not trust someone to be in a position of complete un-adulterated control of your network, then they should not be in that position. ... >(assuming we are talking about NT/AD Domain Admins) ...
  (Security-Basics)
• Re: ADMT v3 Access is Denied
  ... Check to make sure that it resides in both domain admins groups. ... Having a trust doesn't explicity grant you access to all, ... > I discovered that the Forest functional level on the test domain needed ... >> Is the access denied error caused by the type of trust I have created? ...
  (microsoft.public.win2000.active_directory)
• Re: Track Domain Admin.
  ... The reality is there is no way to fully audit a domain administrator in a ... domain if you don't trust them. ... The best way to fix this kind of an issue is ... want to protect information from domain admins the only way is to use EFS ...
  (microsoft.public.win2000.general)