user2838376

Asked: 2019-10-30 21:03:21 +0800 CST2019-10-30 21:03:21 +0800 CST 2019-10-30 21:03:21 +0800 CST

Which are permissions to delete subobjects for Computer objects?

Here is the thing: I've composed a template for Active Directory Users and Computers so our branches could add/delete/rename computers in their respective OUs on their own (without granting them Full Control over Computer objects).

So it's kinda restircted "Not So Full Contol". It works correctly, most of the time. But there are some computers which has subobjects in them. Like AD published printers or sometimes some other stuff like "RouterIdentity" container.

How can I grant permissions to local admins groups over their respective OUs so they could delete Computer objects along with any object within those computer objects?

Currently (in terms of delegwiz.inf file) I grant those groups permissions to create and delete computer objects but it is not enough to delete any subobject.

[TemplateXX.SCOPE] computer=CC,DC

Which are permissions to delete subobjects for Computer objects?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

Which are permissions to delete subobjects for Computer objects?

0 Answers