Re: Possible to grant additional rights to a built-in group
From: Christian (badeanden_at__no_spam_hotmail.com)
Date: Fri, 1 Oct 2004 03:45:06 +0200
Thanks for you reply.
I am aware how to delegate authority and how to use the various security
policies ... in my own opinion, at least ;-)
Delegation and security plicies does not help me here, I am affraid. I need
to assign additional access rights to a built-in group (DHCP USers) already
granted to another built-in group (DHCP Administrators). My problem is that
I don't have a clue what those rights are for the DHCP service and where
they are assigned. I am pretty sure it is not delegation issue, though.
I have assigned my test users Full Control everywhere I can think of
(OU/NetServices/file system etc.), but unless I assign the to the
Administrators or DHCP Administrators group, they still get "Access is
Denied" for all the actions in the DHCP console.
"Steven L Umbach" <email@example.com> wrote in message
> You can manage user rights in the appropriate security policy such as
> domain/local/OU. For instance open Local Security Policy via secpol.msc
> and then go to security settings/local policies/user rights to view the
> user rights that can be configured. For an Active Directory domain you can
> "delegate" authority to users/groups for many administrative tasks. The
> link below explains in more detail. --- Steve
> "Christian" <badeanden@_no_spam_hotmail.com> wrote in message
>> Is it possible to grant additional user rights to a built-in group?
>> How can I see what the currect access rights are and to what objects they
>> I am trying to enhance the capabilities of the DHCP Users built-in group
>> to allow my HelpDesk perform minor adminitrative tasks without adding
>> them to the DHCP Administrators built-in group.
>> Any pointers are greatly appreciated!