I was wondering if it is possible to have granular admin rights/capabilities for an AD? If so could someone provide a template or point my in the general direction of additional material that will help me in my quest.
I am responsible for our entire infrastructure and currently a member of the Domain Admins group (which is probably not the best way to go about things). However I'm going off on holiday and the bosses want to grant someone else in the company some admin rights, not as much as me, until my return. Hence I was thinking of restructuring the security aspect of our AD and have graded admin groups that users could be given membership to, thus allowing them capabilities that differ from user to user.. Regards, Rab. =========================================================== Robert Jackson Phone: +44 (0) 141 332 7999 Software Engineer Fax: +44 (0) 141 331 2820 Walker Martyn Ltd 1 Park Circus Place Email: [email protected] Glasgow G3 6AH, Scotland Web: http://www.walkermartyn.co.uk =========================================================== ************************************************************************ The information in this internet E-mail is confidential and is intended solely for the addressee. Access, copying or re-use of information in it by anyone else is unauthorised. Any views or opinions presented are solely those of the author and do not necessarily represent those of Walker Martyn Ltd or any of its affiliates. If you are not the intended recipient please contact [email protected] Walker Martyn Ltd, company number SC197533. Company is registered in Scotland and has its registered office at 1 Park Circus Place, Glasgow G3 6AH, UK. **************************************************************** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
