Re: AD permissions
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 03/03/04
- Next message: Steven L Umbach: "Re: Security Account Manager Initializatioin Failed"
- Previous message: Gene: "AD permissions"
- In reply to: Igor Derbyshev: "AD permissions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 03 Mar 2004 16:22:58 GMT
It could. For instance I believe read is needed for user to domain, domain
controllers, and users container in order to be able to change passwords and if the
users are in a container that they do not have read permissions then Group Policy
settings for that container will not apply. However if the container is not a default
OU and the user is not in that container nor needs access to anything in that
container via AD search, I believe it will work [assuming you give permissions to
needed groups] but test it out first. You may also want to post in the
win2000.active_directory newsgroup. --- Steve
"Igor Derbyshev" <derbyshev@mail.ru> wrote in message
news:u9Cth8RAEHA.448@TK2MSFTNGP11.phx.gbl...
> Hello. I want to restrict permissions on some of AD OU containers
> by removing Authenticated Users (Read) permission.
> Will everything be ok, or it will produce any unexpected side effect?
>
> --
> Sincerely yours,
> Igor Derbyshev
> MCSA (W2k)
>
>
- Next message: Steven L Umbach: "Re: Security Account Manager Initializatioin Failed"
- Previous message: Gene: "AD permissions"
- In reply to: Igor Derbyshev: "AD permissions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
