Associating Security Scopes and Collections with Individual Roles
An administrative user assigned more than one role may have the same security scopes and collections available for all roles, or have different security scopes and collections available for each role. For example, an endpoint security group might manage software updates and endpoint protection for both servers and desktops but compliance settings only on end user systems. To prevent this group from deploying compliance settings to servers, remove the All Systems collection and assign a collection consisting of desktops and laptops only. To prevent this group from deploying compliance settings designed for servers to user systems, remove the Default security scope, and add a security ...
Get System Center 2012 Configuration Manager Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.