> (I'm interested in > using ADAM to store security-related data, so > I'd love to be able to have a > securuty admin that is not an AD admin, but I digress)..
Someone doesn't need to be an AD Admin to admin ADAM. They can be a normal user in either AD or on local machines. Though local machine IDs isn't very scaleable. joe -- O'Reilly Active Directory Third Edition - http://www.joeware.net/win/ad3e.htm -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of F. Javier Jarava Sent: Tuesday, October 24, 2006 1:27 PM To: [email protected] Subject: [ActiveDir] ADAM-ADSIEDIT and "adam-user-based" administration.. (ADAM SP1) Hi all!! I'm (trying to) get up to speed with AD/AM, but I seem to be hitting some glitch. So, please, if I'm doing something stupid, please do tell me: As of ADAM SP1, it's possible to create ADAM users in the config. partition, thus making it possible for an ADAM user to be the administrator of a replica set. In this wey, it'd be possible to maintain some role separation between the users of the Domain and ADAM roles/users. (I'm interested in using ADAM to store security-related data, so I'd love to be able to have a securuty admin that is not an AD admin, but I digress)... The thing is, I manage to add an ADAM user as per the instructions on the ADAM docs, and I can bind using LDP and simple security. The problem is that I haven't been able to do the same with ADAM-ADSIEDIT... Do anybody knows how you can set "advanced" connection options or, barring that, what you have to do to get ADAM-ADSIEDIT to use an ADADM user to logon? Of course, I know that it "ought" to be possible to do all admin. tasks from LDP, but it's a bit... Not too user friendly ;) Thanks a lot in advance. Best Regards Javier Jarava List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/[email protected]/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/[email protected]/
