Denying users not to browse AD users and Computers

N

nwtest

By default authenticated users can install AdminPak on
thier machine(assume they have rights to install programs)
and they will have Active Directory USers and Computers
MMC, Active directory Sites and Services, DNS etc etc.
How can I prevent them from seeing this AD USers and
Computers objects and no browsing?

Does it make sense for them to browse the AD content..
 
H

Herb Martin

nwtest said:
By default authenticated users can install AdminPak on
thier machine(assume they have rights to install programs)
and they will have Active Directory USers and Computers
MMC, Active directory Sites and Services, DNS etc etc.
How can I prevent them from seeing this AD USers and
Computers objects and no browsing?
Click to expand...

Permissions -- remove the "Read ALL" or whatever is allowing them
to access such things.
Does it make sense for them to browse the AD content..
Click to expand...

Only you (and your management) can decide if this makes sense --
for some companies it does.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

AD users&computers 2
How to create a container under Users in AD Users and Computers 8
Users And Computers 1
Prohibiting authenticated users to list/read AD contents 3
AD Users & Computers 6
AD Users and Computers 1
Active Directory Users and Computers 1
Prevent some Domain Admin Account from creating USERS, Groups, OUs 2

Top