Attached is a file with the OU layout so you can see what I trying to do.
In the Microcom User Group OU. I have 4 security groups and user templates that need to be managed by their respectivie admins. Below are the the security groups and user templates that were created in the Microcom User Groups OU.
- Supervisors SG
- Local Operator SG
-East Coast Admin SG
-West Coast Admin SG
_Shift Supervisor Template (member of Supervisors SG and authenticated users SG)
_Local Operator Template (member of Local Operator SG and authenticated users SG)
_East Coast IT Admin Template (member of East Coast IT Admin SG and authenticated users SG)
_West Coast IT Admin Template (member of West Coast IT Admin SG and authenticated users SG)
Here is what we are trying to to. A West Coast IT Admin and East Coast IT Admin should be able create a Shift Supervisor user, a Local Operator, and other East Coast/West Coast IT Admin users in the Micocom User Group OU. They will create these users manually or by copying the user template and filling out the user fields.
The West Coast IT Admin should be able to move the newly created user from the Microm User Group OU into the Users OU, which is located in the West Coast OU. The West Coast IT Admin should also be able to manage those user accounts, including other West Coast Admin accounts, and create computers in the West Coast OU.
The East Coast Admin should be able to move the newly created user from the Microm User Group OU in the Users OU, which is located in the East Coast OU. The East Coast Admin should be able to manage the user accouns, including other East Coast Admin accounts, and create computers in the East Coast OU.
Now here is what I am thinking when I run the Delegation and Control wizzard.
On the Microm User Groups OU
1. Riqht Click the Microcom User Groups OU and select delegate and control.
2. Add the East Coast and West Coast Admins SG.
3. Create a Custom Delegation.
4. Make sure general box is checked, and select full control.
This should allow the East and West Coast Admin's to create users, even other East and West Coast IT admin users, in the Microcom User's OU, correct?
On the West Coast OU
1. Riqht Click the West Coast OU and select delegate and control.
2. Add the West Coast Admins SG.
3. Create a Custom Delegation.
4. Make sure general box is checked, and select full control.
This should allow the West Coast Admins to create users (or move users from the Microcom User Groups OU) and create computers objects in the West Coast OU and OU's down...correct??
On the East Coast OU
1. Riqht Click the East Coast OU and select delegate and control.
2. Add the East Coast Admins SG.
3. Create a Custom Delegation.
4. Make sure general box is checked, and select full control.
This should allow the East Coast Admins to create users (or move users from the Microcom User Groups OU) and create computers objects in the East Coast OU and OU's down...correct??
Any input would be appreciated............... Thanks..
In the Microcom User Group OU. I have 4 security groups and user templates that need to be managed by their respectivie admins. Below are the the security groups and user templates that were created in the Microcom User Groups OU.
- Supervisors SG
- Local Operator SG
-East Coast Admin SG
-West Coast Admin SG
_Shift Supervisor Template (member of Supervisors SG and authenticated users SG)
_Local Operator Template (member of Local Operator SG and authenticated users SG)
_East Coast IT Admin Template (member of East Coast IT Admin SG and authenticated users SG)
_West Coast IT Admin Template (member of West Coast IT Admin SG and authenticated users SG)
Here is what we are trying to to. A West Coast IT Admin and East Coast IT Admin should be able create a Shift Supervisor user, a Local Operator, and other East Coast/West Coast IT Admin users in the Micocom User Group OU. They will create these users manually or by copying the user template and filling out the user fields.
The West Coast IT Admin should be able to move the newly created user from the Microm User Group OU into the Users OU, which is located in the West Coast OU. The West Coast IT Admin should also be able to manage those user accounts, including other West Coast Admin accounts, and create computers in the West Coast OU.
The East Coast Admin should be able to move the newly created user from the Microm User Group OU in the Users OU, which is located in the East Coast OU. The East Coast Admin should be able to manage the user accouns, including other East Coast Admin accounts, and create computers in the East Coast OU.
Now here is what I am thinking when I run the Delegation and Control wizzard.
On the Microm User Groups OU
1. Riqht Click the Microcom User Groups OU and select delegate and control.
2. Add the East Coast and West Coast Admins SG.
3. Create a Custom Delegation.
4. Make sure general box is checked, and select full control.
This should allow the East and West Coast Admin's to create users, even other East and West Coast IT admin users, in the Microcom User's OU, correct?
On the West Coast OU
1. Riqht Click the West Coast OU and select delegate and control.
2. Add the West Coast Admins SG.
3. Create a Custom Delegation.
4. Make sure general box is checked, and select full control.
This should allow the West Coast Admins to create users (or move users from the Microcom User Groups OU) and create computers objects in the West Coast OU and OU's down...correct??
On the East Coast OU
1. Riqht Click the East Coast OU and select delegate and control.
2. Add the East Coast Admins SG.
3. Create a Custom Delegation.
4. Make sure general box is checked, and select full control.
This should allow the East Coast Admins to create users (or move users from the Microcom User Groups OU) and create computers objects in the East Coast OU and OU's down...correct??
Any input would be appreciated............... Thanks..
