Re: Allowing a Domain User Admin Rights to a Couple of Domain Servers
From: Roger Abell (mvpNOSpam_at_asu.edu)
Date: 06/30/05
- Next message: Roger Abell: "Re: Folder Inheritance"
- Previous message: Matt Gibson: "Re: Allowing a Domain User Admin Rights to a Couple of Domain Servers"
- In reply to: inteltech_at_gmail.com: "Allowing a Domain User Admin Rights to a Couple of Domain Servers"
- Next in thread: inteltech_at_gmail.com: "Re: Allowing a Domain User Admin Rights to a Couple of Domain Servers"
- Reply: inteltech_at_gmail.com: "Re: Allowing a Domain User Admin Rights to a Couple of Domain Servers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 29 Jun 2005 20:58:11 -0700
This is exactly what the machine local Administrators group on
the members is used for. Provide the individual with an account
that is just a low priv domain user account, and then add this
account into the Administrators group on those two machines.
I would recommend that you do not do this with that person's
normal day-to-day usage domain account, but define one just
for the purpose so that those two machines are not placed into
jeopardy by the person's day-to-day activities. The special
account could for example be restrict for local log use to only
those two machines.
-- Roger Abell Microsoft MVP (Windows Security) MCSE (W2k3,W2k,Nt4) MCDBA <inteltech@gmail.com> wrote in message news:1120101232.707852.206150@g47g2000cwa.googlegroups.com... > Hello All > > I am looking for a little assistance... > > Within our company we have two servers that have a different > administrator to the rest of the network. > > Currently the administrator of these servers uses the domain > administrator username/password to perform his admin tasks on the > server, but has also been know to use this account for other purposes. > > So what I would like to do, is provide him with an account that ONLY > has administrator rights on this two machines that he requires > administrator access too. > > Something like user account within Windows XP on the domain server > would do the trick... but no! > > Does anyone have any ideas/advise for this? > > Thanks in advance > > David >
- Next message: Roger Abell: "Re: Folder Inheritance"
- Previous message: Matt Gibson: "Re: Allowing a Domain User Admin Rights to a Couple of Domain Servers"
- In reply to: inteltech_at_gmail.com: "Allowing a Domain User Admin Rights to a Couple of Domain Servers"
- Next in thread: inteltech_at_gmail.com: "Re: Allowing a Domain User Admin Rights to a Couple of Domain Servers"
- Reply: inteltech_at_gmail.com: "Re: Allowing a Domain User Admin Rights to a Couple of Domain Servers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
