Hi All,
Is there a way to deny password changing abilities to a Domain Administrator for only a limited set of accounts? These accounts reside in their own OU, which because of the permissions set, that Domain Admin cannot even see it when in ADUC. I thought that my problem was solved. I just found out that this Domain Admin can still use DSMOD to change passwords of users within that OU. Any help is appreciated!
Thanks!!
Cory
-----------------------------------
Cory G. Stuart
Network Administrator
Nuclear Engineering Division
Argonne National Laboratory
-----------------------------------
