Hi all,
It's my first post here. I've been referred here and
been told that you guys were the "real gurus" of AD. I have a strange
thing happening and I would like to have your thoughts about it.
Here is the situation, I created a group called "technicians" and I gave
the
user right "add station to the domain to it. I then added the technician
group to the computers OU and set the following:
List contents
Read all properties
Read permissions
Create computer objects
Delete computer objects
The problem is that when I set these, everything works fine. But the
next
day when a tech (member of the technician group) tries to join a
computer to
the domain he has an access denied. To fix the issue temporarily, I gave
the group the perms (create all childs object and delete all childs
object).
I tried to remove the inheritance of the perms on this ou but it didn't
help.
I can't see why this is happening.
Thanks
Michel Bruyere
Network/systems administrator
CompTIA A+, Network+
The quickest way to find something
is to start looking for something else.
:-)
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
