X hits on this document

328 views

0 shares

0 downloads

0 comments

96 / 123

Delegating Office Communications Server Setup and Administration

You can grant permissions to delegate Office Communications Server setup or administration to users who are not members of an authorized Active Directory Domain Services (AD DS) group. Delegation allows more administrators to participate in your Office Communications Server deployment without opening up unnecessary access to resources. For example, delegating administration is useful in situations where you want users who are not members of the DomainAdmins group to activate Office Communications Server after the servers are installed.

Important:

You must specify a global or universal group that already exists when you delegate setup or administration. You cannot use a local group.

The following table summarizes the delegated roles.

Delegated Roles

Role

Purpose

Location

Setup

Install and activate servers.

User administration.

Domain where servers will be deployed.

Server administration

Read/write global settings.

Read/write to computer organizational unit (OU) containers.

Read user OU containers (optional).

Full computer administration.

Domain where servers are to be administered.

User administration

Read global settings.

Read computer OU containers.

Read/write to user OU containers.

Member in the RTC Local User Administrators group on all servers in a specified pool.

ReadOnlyRole on the pool or server RTC and RTCConfig databases.

Domain where users are to be administered.

Document info
Document views328
Page views329
Page last viewedWed Dec 07 21:12:23 UTC 2016
Pages123
Paragraphs2763
Words27811

Comments