June 2017
Beginner to intermediate
742 pages
18h 29m
English
Content preview from Mastering Active Directory
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Using the delegate control method in AD
This works similar to ACLs, but it simplifies the privilege management as it uses the following:
- The Delegation of Control Wizard can be used to apply delegated permissions
- Predefined tasks can be used and permissions are assigned to those tasks
This wizard contains the following predefined tasks, which can be used to assign permissions:
- Create, delete, and manage user accounts
- Reset user passwords and force a password change at the next logon
- Read all user information
- Create, delete, and manage groups
- Modify the membership of a group
- Manage Group Policy links
- Generate Resultant Set of Policy (Planning)
- Generate Resultant Set of Policy (Logging)
- Create, delete, and manage inetOrgPerson accounts