From: Almeida Pinto, Jorge de [mailto:[EMAIL PROTECTED]
Sent: Thursday, February 16, 2006 8:53 AM
To: [email protected]
Subject: RE: [ActiveDir] Delegration of Administration
Usage: dsrevoke /report|/remove [/domain:<domainname>] [/username:<username>]
[/password:<password>|*] [/root:<domain/OU>] <securityprincipal>
/report: Only reports the ACEs that have been set for the given
principal on all domain and OU objects under root
for the given principal
(must be specified when <securityprincipal> is in domain other
than default or if alternate credentials are provided)
default to the specified domain's default naming context (The
root domain or OU must be specified using x500 format; if the
dn must include spaces enclose the option in quotes,e.g. "/root:..")
principal being looked up
From: [EMAIL PROTECTED] on behalf of Carerros, Charles
Sent: Thu 2006-02-16 15:47
To: '[email protected]'
Subject: [ActiveDir] Delegration of Administration
Does anyone have script or method of identifying what permission
is set to a
security group through Delegation of Administration. I was
hoping to find a
quick way of evaluating the security so that I can revamp
our system.
Thanks,
Charlie
List info : http://www.activedir.org/List.aspx
List
FAQ : http://www.activedir.org/ListFAQ.aspx
List
archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
This e-mail and any attachment is for authorised use
by the intended recipient(s) only. It may contain proprietary material,
confidential information and/or be subject to legal privilege. It should not be
copied, disclosed to, retained or used by, any other party. If you are not an
intended recipient then please promptly delete this e-mail and any attachment
and all copies and inform the sender. Thank you.
