DHCP Server Delegation

Toggle sidebar Toggle sidebar
G

Guest

Guest
Archived from groups: microsoft.public.win2000.active_directory (More info?)

I have several DHCP servers running on domain controllers, all in one domain.
The Domain controllers are centrally managed from corporate; however, I
would like to allow the remote site administrators to manage the DHCP server
at their site. How do I go about delegating this?

If I put a user in "DHCP Administrators", the user can manage all the DHCP
servers that are DCs. Is there a way to restrict access, so that a user can
only manage DHCP on a specific server?
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.active_directory (More info?)

"" wrote:
> I have several DHCP servers running on domain controllers, all
> in one domain.
> The Domain controllers are centrally managed from corporate;
> however, I
> would like to allow the remote site administrators to manage
> the DHCP server
> at their site. How do I go about delegating this?
>
> If I put a user in "DHCP Administrators", the user can manage
> all the DHCP
> servers that are DCs. Is there a way to restrict access, so
> that a user can
> only manage DHCP on a specific server?

Hi

for more info on this see also:
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/ServerHelp/46eafb5c-014b-4f28-b2c1-28e6834f3ad5.mspx

you are correct. Because DHCP is on a DC, putting a user in the DHCP
Administrators in the domain those users will be able to manage all
DHCP server on the DCs. Those admins however cannot introduce new DHCP
servers because these need to be authorized first by an enterprise
admin.

Another thing.... When DHCP is on a DC it is best to configure DHCP
with a user account to register client IPs. This is especially needed
on DCs otherwise the records the DC register might be endangered!
See: http://support.microsoft.com/?kbid=255134. Although the article
is for 2000 it is almost the same for 2003. The main difference is
that 2003 offers a GUI to configure the account
Cheers,

--
Posted using the http://www.windowsforumz.com interface, at author's request
Articles individually checked for conformance to usenet standards
Topic URL: http://www.windowsforumz.com/Active-Directory-DHCP-Server-Delegation-ftopict553437.html
Visit Topic URL to contact author (reg. req'd). Report abuse: http://www.windowsforumz.com/eform.php?p=1756583
 
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom