Re: NT Security Question

From: Jonathan (Jonathan283@hotmail.com)
Date: 03/06/02

• Next message: Jonathan: "Re: Location of the saved username/password"
• Previous message: Tim Constantine: "Re: User can login with ANY password"
• In reply to: Robert Bollinger: "NT Security Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: Jonathan <Jonathan283@hotmail.com>
Date: Wed, 06 Mar 2002 22:31:29 GMT

None. All the domain admin has to do is add a user to the group, and
the user will get the permissions assigned to that group on your
server.

Now, if the user is a member of another group that has different set
of permissions defined, then the user will get the most permissive of
the two sets of permissions.

The upshot is that the local server Admin determines what level of
access members of global groups have. All the Domain Admin can do is
add users to the group.

Remember though, that Domain Admins are generally local Administrators
on member servers, so the domain admin can modify the permissions you
set if he wishes.

                               -- Jonathan

On 6 Mar 2002 07:16:08 -0800, robert_bollinger@hotmail.com (Robert
Bollinger) wrote:

>Hi -- Here is the Scenario with NT40 Server SP6a:
>
>The administrator of the ABC Domain creates a global group called
>TempTechs
>
>On my server (MyServer), which is a member server of the ABC Domain, I
>share a directory and give the TempTechs Global Group full access and
>permissions.
>
>My question is: What is the minimal permissions that the Administrator
>of the ABC domain needs to give the TempTechs global group in order
>for members of that group to access the directory share on MyServer
>with the full permissions that I set for them?
>
>Thanks,
>
>Robbie Bollinger

---

• Next message: Jonathan: "Re: Location of the saved username/password"
• Previous message: Tim Constantine: "Re: User can login with ANY password"
• In reply to: Robert Bollinger: "NT Security Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Share access problem 2003 member server ... but they do not have rights or permissions unless ... can't even view the share on this server. ... Account John is a member of child domain called West.newtrader.co.uk ... (microsoft.public.windows.server.general) Re: Inherited Permissions for Printers ... I don't think you can modify the default queue perms like that. ... a script for checking/setting permissions that maybe runs nightly or hourly on ... Joe Richards Microsoft MVP Windows Server Directory Services ... when a member of IT Helpdesk Staff creates a new printer ... (microsoft.public.win2000.active_directory) Re: trust issues when connecting a member server ... server in the same OU as the others where everything works as expected? ... profile from every other member server and workstation in the domain ... you'll see the default is for Everyone to have Read permissions. ... an .exe file I get the error. ... (microsoft.public.windows.server.sbs) Re: trust issues when connecting a member server ... server could effect authentication to companyweb. ... I'd check the permissions on the member server. ... (microsoft.public.windows.server.sbs) Re: Exchange 2003 send as permission,please help! ... No the user isn't a member of any of the groups mentioned. ... I can't figure it out as if I add her to the domain admin ... >permissions reset by Active Directory every hour. ... >Please do not send email directly to this alias. ... (microsoft.public.exchange.admin)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(12)