How best to control Junior Admins

130 pts.
Tags:
Administrative privileges
IT staff
Junior Network Administrators
Microsoft Windows Server 2003
Network administrators
Hi all, Need to give new member of team Admin rights, but I'd like to know how you all manage your junior admins? I'd like to give restricted rights and have an audit trail. Environments in Use; - Window server 2003 and Active Directory - Vmware ESX + vcentre - Lotus Domino + Notes I guess most of it comes down to AD! Thanks Paul

Answer Wiki

Thanks. We'll let you know when a new response is added.

You would recommend using of both a security group (e.g. Junior Admins), assign those personnel in this membership, and then create a group policy with those permissions. Then assign this group policy to this security group. As per the auditing, You can use the built-in auditing within windows with some modifications. Or you can use a product like Active Administrator.

Within ESX, you cause modify the authentication mechanism to utilize Active Directory. Here’s the pdf link to enable that: http://www.vmware.com/vmtn/resources/582

Lotus Domino & Notes (not familiar with) should be able to utilize AD which can then be audited by Active Administrator.

Discuss This Question: 2  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • BlankReg
    A large stick and threats of physical violence works for me. "You break my network, I break your fingers" ;-) Also the words "If you don't know how to do it, ASK" - That is how we all learn. And make regular backups !
    12,325 pointsBadges:
    report
  • Pjb0222
    Hi. Here are the documents and procedures on administering the systems. All changes are logged. Access to the local administrator account password is for emergencies only and is logged (it is also changed 4 hours after the password is retrieved). If you don't know how to do something or are unclear on procedure, ask. Nothing goes to production without successfully going through test. The first minor oops is free. Second oops or major oops get you... So far as learning and testing? That is why there are test and engineering environments. Here is your administrative IDs for each environment and initial passwords. Change the passwords now.
    3,310 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following