That's a legacy group from NT4 that you shouldn't leverage in an AD environment. In fact, you should remove it from the default security descriptor of your user and group objects to keep your AD clean from unused ACEs.
/Guido -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Michael Miller Sent: Freitag, 22. Dezember 2006 16:39 To: ActiveDir@mail.activedir.org Subject: Re: [ActiveDir] Delegate Password Resets I put the user accounts of the helpdesk personnel in the built in group, Account Operators. This is precisely why I think that group exists. -mjm Salandra, Justin A. wrote: > > I wanted to find out from all of you what ways you have delegated > password reset functions to your helpdesks. We have a product that > does this but it is continually having problems and want to know if > there are nay other ways. > > > > Justin A. Salandra > > MCSE Windows 2000 and 2003 > > Network and Technology Services Manager > > Catholic Health Care System > > 646.505.3681 > > cell 917.455.0110 > > [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> > > > List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir@mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir@mail.activedir.org/