Restrict access to "Write Office Location" attribute - Microsoft Community


hi, trying restrict access "office location" (physicalofficelocation) field in users account delegated administrators.

i have enabled the field in dssec.dat file , can see "write office location" , "read office location" fields in wizard.

delegation has been setup on our domain below.

delegation tbg - ad user create   

delegation tbg - ad user create restricted

delegation tbg - ad user modify

delegation tbg - ad user modify restricted

the ad user create security group works expected. 

we have requirement further restrict access create or modify user attributes.

these "office" field on general tab, 

the "home folder" , "profile path" field on profile tab.

our issue occurs when setting (deselecting) the  "write office location" and/or "read office location" during delegation of control wizard.

when click finish, receive following message. 

"security information obtained active directory not edited. parameter incorrect."

when select both "write office location" , "read office location" wizard completes successfully.

can 1 please provide assistance in how can set read / write office field can lock down subset of administrators.

thanks in advance.

rob


checking in see if 1 in community has delegated above , if may able assist me this.


Windows / Windows 10 / Security & privacy / PC



-

Comments

Post a Comment

Popular posts from this blog

$AV_ASW folder - Microsoft Community

dear all, lately i've found folder in both c: , d:, named $av_asw. inside there vault folder , within folder, db file can't open notepad or ms access. idea on this? i've tried googling gave me avast instead, however, i've used avast more 3 years now, no such file exist before. virus or bug or malware or whatever? please advice. thanks! what name of file? sounds avasts vault put potentially unwanted or infected files prevent them doing harm. (quarantine) open avast , quarantined items, if know file safe, can recover or can empty quarantine vault , avast remove file. Windows / Windows 10 / Security & privacy / PC
Read more

WTouch_Message_Window app running in the background is preventing - Microsoft Community

everytime restart or turn off computer message appears in front of me, since happened wacom tablet's been acting out , cant find driver it...idk if keep affecting performance, need closing off... since it's running in background i didnt know app there or anything, , started 2 months ago...just tampered tablet , need work done urgent... d:  thanks  ***post moved moderator appropriate forum category.*** everytime restart or turn off computer message appears in front of me, since happened wacom tablet's been acting out , cant find driver it...idk if keep affecting performance, need closing off... since it's running in background i didnt know app there or anything, , started 2 months ago...just tampered tablet , need work done urgent... d:  thanks  hi michelle, to better assist issue, have tried uninstalling driver of wacom tablet computer? to eliminate software caus...
Read more

Windows error No Certificate Available - Microsoft Community

running windows 10 on new dell computer. when trying download software purchased dell stopped windows security error dfsvc says "no certificate available. no certificates meet application criteria. click ok continue or cancel." download stopped. have spoken dell support via email several times , sent them screenshots of error details have no solutions. has else tried download software dell , had issue? have downloaded recent .net framework. had similar problems?  hi, link might help:  https://social.msdn.microsoft.com/forums/en-us/d858d189-6d14-4c8d-809d-d6c841dd8866/using-domain-certificate-for-app-signing?forum=toolsforwinapps&ppud=4 Windows / Windows 10 / Security & privacy / PC
Read more