Post migrated to: http://kpytko.pl/active-directory-domain-services/active-directory-rights-delegation-overview/
Nice article Krzysztof Pytko.
Thank you Awinish!
I just follow your post but the user can not reset account or password ( grayed out) My DC is 2008 R2 and user was account operator group before .
1. Create dlg-it
2. Create gg-it ( Add dlg-it -Member of)
3. Create role-HElpdesk ( Add dlg-it) and user1 to memebers.
4. Dellegate to IT User OU but i cannot reset or change anything in this ou?
OK, that’s good. Can you tell me please what kind of permissions did you assign to that group delegated into OU ?
I used the same method for delegating access to group of users, but the group of users were not able to modify user group (like adding to additional group) .Should this delegated user group assigned with specific set of permissions , if so which permission i need to select.
Thanks in advance
what have you set up during control delegation? Have you consifured it on OU where those groups are located ?
Thank you in advance for more details
Fill in your details below or click an icon to log in:
You are commenting using your WordPress.com account. ( Log Out / Change )
You are commenting using your Twitter account. ( Log Out / Change )
You are commenting using your Facebook account. ( Log Out / Change )
You are commenting using your Google+ account. ( Log Out / Change )
Connecting to %s
Notify me of new comments via email.
Enter your email address to follow this blog and receive notifications of new posts by email.
Join 63 other followers
iSiek's blog about Microsoft Windows services
Create a free website or blog at WordPress.com.