Restric access

[jono]

Archived from groups: microsoft.public.win2000.group_policy (More info?)

Is there a way to restrict other administrators changing
the admin password..?

Also is there a way to restrict other administrators with
admin permissions from accessing the management
consoles...ie. sites and services, AD users and computers
etc..

 

[Guest]

Archived from groups: microsoft.public.win2000.group_policy (More info?)

1) No, not on the actual administrator account

2) Don't make them domain (or enterprise) admins. Instead
create your own group with rights that you specifiy. One
of the great things about AD is how granular it's
permissions and rights management lets you get.

>-----Original Message-----
>
>Is there a way to restrict other administrators changing
>the admin password..?
>
>Also is there a way to restrict other administrators with
>admin permissions from accessing the management
>consoles...ie. sites and services, AD users and computers
>etc..
>.
>

 

[Guest]

Archived from groups: microsoft.public.win2000.group_policy (More info?)

You can restrict access to snap ins using GP filtering too


http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/policy_restrict_to_permitted_domain.htm



<anonymous@discussions.microsoft.com> wrote in message news:<1e68e01c45564$22d791e0$a101280a@phx.gbl>...
> 1) No, not on the actual administrator account
>
> 2) Don't make them domain (or enterprise) admins. Instead
> create your own group with rights that you specifiy. One
> of the great things about AD is how granular it's
> permissions and rights management lets you get.
>
> >-----Original Message-----
> >
> >Is there a way to restrict other administrators changing
> >the admin password..?
> >
> >Also is there a way to restrict other administrators with
> >admin permissions from accessing the management
> >consoles...ie. sites and services, AD users and computers
> >etc..
> >.
> >