Hi,
I’m learning how to use SBS 2003, using virtual PC, in preparation for installing it at our family business. What I want to check is the best way to harmonise different organisational units.
We’re a small family company, and I’m currently only planning on having three groups of users: one for normal users, one for finance and one for the partners/owners. There will be two domain admins, myself and my brother.
I’m reading up on how to do this, and wanted to check that my current thinking is along the right lines.
What I plan is for each of the above logical groups to have its own Active Directory Security Group and its own Distribution Group. Everyone has their own PC, with no hotdesking, so I was going to create an OU for each group of users within SBSComputers, and then put the relevant Computers into each group (is there any advantage to this?).
My idea is that I can easily and quickly apply group policy objects to these groups, and that having the same groups across the three different OUs (SBScomputers, Distribution Groups and Security Groups) will make it easy to be consistent and logical.
Is the right way of going about things? I’d really appreciate any general advice anyone can give.
Cheers
Karl
I’m learning how to use SBS 2003, using virtual PC, in preparation for installing it at our family business. What I want to check is the best way to harmonise different organisational units.
We’re a small family company, and I’m currently only planning on having three groups of users: one for normal users, one for finance and one for the partners/owners. There will be two domain admins, myself and my brother.
I’m reading up on how to do this, and wanted to check that my current thinking is along the right lines.
What I plan is for each of the above logical groups to have its own Active Directory Security Group and its own Distribution Group. Everyone has their own PC, with no hotdesking, so I was going to create an OU for each group of users within SBSComputers, and then put the relevant Computers into each group (is there any advantage to this?).
My idea is that I can easily and quickly apply group policy objects to these groups, and that having the same groups across the three different OUs (SBScomputers, Distribution Groups and Security Groups) will make it easy to be consistent and logical.
Is the right way of going about things? I’d really appreciate any general advice anyone can give.
Cheers
Karl
