Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Permissions Problem

Status
Not open for further replies.
LittleFishy

LittleFishy

MIS
Sep 10, 2002
46
GB
The company I work for has two sites (1 domain controller at each site) with about 6 domain admins. We have a number of sensitive directories that we want to allow only specific users access to along with the admin account and only one of the domain admins access to it. The idea is to prevent other domain admins gaining access to that folder and to force any changes of the permissions to be made physically on the server and not through terminal servers etc. Help, how do I do it and is the domain admins account going to overrule what ever permissions I set up?
 
Sort by date Sort by votes
you disable permission inheritance, and add both users to the folder NTFS permissions list... or better still, add both accounts to a new security group and give rights to this new group.

You cannot stop the other domain admins from taking possession of these files however, in order to change permissions...
being domain admins, they can have and grant themselves all the keys.

alternatively, create a security group and add all the domain admins you dont want to have rights, and give them the deny permissions...
that way they will be explicitly refused access.

Aftertaf
__________________
squiggle squiggle
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ravalos
  • Locked
  • Question
Problem with PDFs in IIS
Replies
1
Views
1K
gbaughma
gbaughma
rzammit82
  • Locked
  • Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
962
suncit
suncit
lacked
  • Locked
  • Question
problem with windows update on windows server 2016
Replies
1
Views
304
maybeimaleo
maybeimaleo
MoJHK
  • Locked
  • Question
ESXI server upload problem
Replies
3
Views
306
hairlessupportmonkey
hairlessupportmonkey
axilleas
  • Locked
  • Question
Windows 2012 R2 Active directory problem after applying GPO
Replies
7
Views
502
technome
technome

Part and Inventory Search

Sponsor

Back
Top