Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How can I let user manage distribution/security group in AD?

Status
Not open for further replies.
kaoboda

kaoboda

IS-IT--Management
Joined
Sep 10, 2002
Messages
53
Location
US
How can I let user manage distribution/security group in AD? I have an Executive Director who wants to be able to control a couple distribution/security groups... how can I give him this access?

Thanks in advance.
 
Sort by date Sort by votes
I have an Executive Director who wants to be able to control a couple distribution/security groups... how can I give him this access? This would scare the ()*&&* out of me unless you know for a fact he is good with the workings of the os. That's like giving a presidint of a non-pc company admin rites to your domain. He may know how to run the company, but doesn't have a clue as to how to even create a new user. Is he good? You can give him admin rites to just those groups, but still, is he good? Why not just admin them for him? Glen A. Johnson
Microsoft Certified Professional
glen@nellsgiftbox.com
[americanflag]

"The time for action is now. It's never too late to do something."
Antoine de Saint-Exupery (1900-1944); French aviator and writer.

 
Upvote 0 Downvote
Well, basically she just wants to be able to add/remove users from a certain distribution/security group and nothing else.

I don't want her to be able to personally, but I don't have any other choice... she has the final word.
 
Upvote 0 Downvote
If she's not good enough to know how, tell her it can't be done unless you make her an admin of the domain, and you won't be held accountable if she mucks something up. Don't have to tell her the truth, right. If this isn't an option, go ahead make her admin of just the groups, and tell her, don't come to me if someday you can't get into something because you fouled it up.

[hammer] Glen A. Johnson
Microsoft Certified Professional
glen@nellsgiftbox.com
[americanflag]

"The time for action is now. It's never too late to do something."
Antoine de Saint-Exupery (1900-1944); French aviator and writer.

 
Upvote 0 Downvote
futuretech204, that's a good article. I've found in the past however, that giving anybody outside the IT department any kind of admin rites causes problems. When I took over the network, my previous boss had made 27 admins, only because he didn't realize that when you change a profile, the person has to log off, then log on to get the new rites. I liked the article and it does seem viable, I've just been burned and won't let it happen again. Good luck all. Glen A. Johnson
Microsoft Certified Professional
glen@nellsgiftbox.com
[americanflag]

"How many things, too, are looked upon as quite impossible until they have been actually effected?."
Pliny the Elder, Caius Plinius Secundus(c.23-79 A.D.); Roman writer.
 
Upvote 0 Downvote
I do agree with you and yes its not safe to allow someone that isnt qualified have access to the network settings.
Have a good backup on hand.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

rzammit82
  • Locked
  • Question Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
1K
suncit
suncit
ravalos
  • Locked
  • Question Question
Problem with PDFs in IIS
Replies
1
Views
2K
gbaughma
gbaughma
microsGuy16
  • Locked
  • Question Question
Can not copy files to Mapped drive
Replies
0
Views
967
microsGuy16
microsGuy16
Aquiles Vidal
  • Locked
  • Question Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
888
Aquiles Vidal
Aquiles Vidal
DrB0b
  • Locked
  • Question Question
Hybrid on prem AD with Azure AD
Replies
2
Views
590
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top