Active Directory
« Previous EntriesDynamically populating user properties in Active Directory
Thursday, October 4th, 2007Recently I was asked to help out with a small issue pertaining to rolling out MS Live Communications Server. Two SIP properties (msRTCSIP-LineServer & msRTCSIP-Line) on the user object in AD were set dependent on which office the user was located in, and their Direct Dial (DDI) number. These properties needed to be set on [...]
Control Access Rights in Active Directory
Tuesday, April 3rd, 2007Recently we looked at Extended-Rights in Active directory, and today we’ll complete our series of posts on permissions in AD with a post on Control Access Rights, also known as Specific Rights.
Control Access Rights are similar to Standard Rights in the permissions applied, however it is applied to a specific object, or property set. This [...]
Extended Rights in Active Directory
Wednesday, March 28th, 2007Extended Rights are one of the mechanisms behind Active Directory permissions that allow for such granular control over the delegation of tasks in your environment. There’s a Technet article that explains delegation and touches on Extended Rights (near the bottom).
Extended Rights exists in AD as objects stored within the Extended-Rights container, which is located in [...]