Re: DSACLS and joining a domain
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 05/05/05
- Next message: Steven L Umbach: "Re: EventID 534: User has not been granted requested logon type"
- Previous message: JPV: "GPO policy update"
- In reply to: Ed Little: "DSACLS and joining a domain"
- Next in thread: Eddie Little: "Re: DSACLS and joining a domain"
- Reply: Eddie Little: "Re: DSACLS and joining a domain"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 5 May 2005 12:19:30 -0500
I believe the user only needs create computer objects to join computers to
the domain. --- Steve
"Ed Little" <SPAMlittle_eddieME@hotmail.comNOT> wrote in message
news:1jaee.7499$uE3.84@charlie.risq.qc.ca...
> Hello,
>
> I am wondering what the minimum permissions needed to join a computer to a
> domain are? I would like to autocreate computer objects using dsadd, and
> them set the appropriate permissions using dsacls. Seems easy enough, but
> it is pretty slow. When adding a computer in ADUC, and specifying the
> group/user who can join it to the domain, it seems to associated many
> unnecessary permissions. Maybe they are all needed, but mimicing these
> settings with dsacls takes for ever. Any ideas?
>
> Thanks a bunch.
>
> Ed
>
- Next message: Steven L Umbach: "Re: EventID 534: User has not been granted requested logon type"
- Previous message: JPV: "GPO policy update"
- In reply to: Ed Little: "DSACLS and joining a domain"
- Next in thread: Eddie Little: "Re: DSACLS and joining a domain"
- Reply: Eddie Little: "Re: DSACLS and joining a domain"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
