• Creating a Site GPO
  • Manage Group Policy Links
    		•

    Required Permissions for Group Policy Snap-in




    Download 296 Kb.
    bet37/50
    Sana22.07.2021
    Hajmi296 Kb.
    #15617
    1   ...   33   34   35   36   37   38   39   40   ...   50

    Required Permissions for Group Policy Snap-in


    To have policy applied, you must have Read and Apply Group Policy permissions. To use the Group Policy Editor snap-in, you must have Read and Write permissions.

    Note: Domain administrators are covered for all Active Directory-based GPOs and local administrators are covered for local GPOs.

    Creating a Site GPO


    To create a site GPO, use the Active Directory Sites and Services snap-in. Note: You must be a member of Enterprise Administrators.

    Delegating Control of Group Policy


    If organizational unit administrators have trouble managing Group Policy, check the following permissions:

    Manage Group Policy Links


    This permission is required for an organizational unit administrator to link a GPO created by another administrator. It is assigned using the “Manage Group Policy Links” in the delegation wizard. This permission:

    • Allows a user to add, remove, and reprioritize linked GPOs.

    • Does not allow user to create or edit GPOs.

    • Actually grants read/write access to GPLink and GPOptions properties of SDOU.

    To verify existing permissions, from the Active Directory Users and Computers snap-in:

    • From the menu bar, click View, then click Advanced Features.

    • Right click on the desired container and select Properties.

    • Select the Security tab. You can now view and edit the ACEs on that container.


    Download 296 Kb.
    1   ...   33   34   35   36   37   38   39   40   ...   50




    Download 296 Kb.
    Bosh sahifa
    Aloqalar
        Bosh sahifa
    Dərs
    Mühazirə
    Qaydalar
    Referat
    Xülasə
    Yazı


    Required Permissions for Group Policy Snap-in

    Download 296 Kb.