|
Posted by Andrei Ungureanu [MVP] on July 31, 2006, 11:52 am
Please log in for more thread options you can set the Create Computer Objects permission by using the Delegate
Control wizard. Right click on an OU and start the wizard.
--
Regards,
Andrei Ungureanu
www.eventid.net
Test our new EventReader!
http://www.altairtech.ca/eventreader/default2.asp?ref=au
>I dont see the value Create Computer Object, I got only Create global
>objects.
>
> "Andrei Ungureanu [MVP]" <contact me via www.itboard.ro> wrote in message
>> you'll need to modify Default Domain Controller Policy.
>> http://technet2.microsoft.com/WindowsServer/en/library/7207aa3e-d95d-4176-a1ca-bc629f1ca6981033.mspx?mfr=true
>>
>> --
>> Regards,
>> Andrei Ungureanu
>> www.eventid.net
>> Test our new EventReader!
>> http://www.altairtech.ca/eventreader/default2.asp?ref=au
>>
>>> Hi,
>>>
>>> I am looking first of all to block all domain users to add machines to
>>> the
>>> domain. I do not want to allow anyone besides Domain Admins and one
>>> other
>>> account to add machines to the domain.
>>>
>>> So the other is where do I need to configure to allow this user to add
>>> machines to the domain. This user will be like a service account i do
>>> not
>>> want to give him login privileges. Will be used with SMS and BDD.
>>>
>>> I am slightly confused regarding local security policy, domain security
>>> policy, domain controler security policy.
>>>
>>> Thanks for your help,
>>>
>>> George
>>>
>>>
>>>
>>>
>>
>>
>
>
| 
XML Sitemap