Re: Administer DC at remote site without domain admin rights
From: Roger Abell [MVP] (mvpNoSpam_at_asu.edu)
Date: 10/27/04
- Next message: Aneesh: "Re: Is there any problem by running both ftp and Http in the same Machine"
- Previous message: Mitch Dempsey: "Re: task scheduler access"
- In reply to: bitwrangler: "Administer DC at remote site without domain admin rights"
- Next in thread: bitwrangler: "Re: Administer DC at remote site without domain admin rights"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 26 Oct 2004 22:37:06 -0700
Steve has provided a number of excellent ideas/pointers.
You should by all means see whether your scenario(s) can be
done through those methods.
If it is necessary that the person must be an admin for the DC
you can make them a member of the domain\Administrators
group instead of domain\Domain Admins
This will limit the person to being an admin (on every DC, not
just the one you intend) but will not confer the wider scope of
administrative access that Domain Admins carries.
-- Roger Abell Microsoft MVP (Windows Server System: Security) MCDBA, MCSE W2k3+W2k+Nt4 "bitwrangler" <newsgroups@hartmanhomes.com> wrote in message news:fqhtn0p8mh7t2gg1m78bo6rkhfcqbov3rt@4ax.com... >I have a server at a remote site that is a domain controller (W2k3 > standard). I would like to give a user the ability to be an admin on > the local box without being a domain admin. Being that there is no > local logon now that it's a DC, I think I may be out of luck but > wondered if anyone had a suggestion? > > Greg
- Next message: Aneesh: "Re: Is there any problem by running both ftp and Http in the same Machine"
- Previous message: Mitch Dempsey: "Re: task scheduler access"
- In reply to: bitwrangler: "Administer DC at remote site without domain admin rights"
- Next in thread: bitwrangler: "Re: Administer DC at remote site without domain admin rights"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
