Re: Implementing Restricted groups
From: Steven L Umbach (n9rou_at_n0-spam-for-me-comcast.net)
Date: 09/29/04
- Next message: anonymous_at_discussions.microsoft.com: "Re: DNS cache poisoning"
- Previous message: Paul G.: "Re: MS02-032 - File version greater than expected"
- In reply to: Karim Ali: "Implementing Restricted groups"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 29 Sep 2004 16:41:06 GMT
They are not a group type but is a security policy to enforce group
membership on domain computers under the scope of influence of the policy.
For instance you could create an Organizational Unit and add a Group Policy
Object to that OU to implement restricted groups. Then you could configure
it for instance for administrators and add just the domain admins group.
That would insure that the domain admins group remains in the local
administrators group on those domain computers and if other users or groups
are added they will be removed when security policy is refreshed. --- Steve
http://support.microsoft.com/default.aspx?scid=kb;en-us;228496 --
restricted groups implementation.
"Karim Ali" <anonymous@discussions.microsoft.com> wrote in message
news:17c401c4a63a$d1201070$a601280a@phx.gbl...
> How are these types of groups created in AD?
- Next message: anonymous_at_discussions.microsoft.com: "Re: DNS cache poisoning"
- Previous message: Paul G.: "Re: MS02-032 - File version greater than expected"
- In reply to: Karim Ali: "Implementing Restricted groups"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
