RE: [ActiveDir] Prevent certain users being added to a group

[Steve Rochford]

Easier to just get the logic of the web page to check the status of the person being denied access - pseudocode something like this:   if not ingroup("staff",sUserName) then  denyaccess sUserName else  "you can't remove " sUsername " from net access" end if   Steve From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Steven Wood Sent: 20 May 2005 10:04 To: ActiveDir@mail.activedir.org Subject: [ActiveDir] Prevent certain users being added to a group Hi,   Using ADSI I have a web page that allows staff to add students to an Active Directory group called ‘DeniedNetAccess’. Members of this group as the name implies are of course denied access to the web. How can I prevent staff from adding other members of staff to this group? Is this possible using AD permissions?   Thanks   Steven