New Question
 
 
PRTG Network Monitor

Intuitive to Use.
Easy to manage.

200.000 administrators have chosen PRTG to monitor their network. Find out how you can reduce cost, increase QoS and ease planning, as well.

Free PRTG
Download >>

 

What is this?

This knowledgebase contains questions and answers about PRTG Network Monitor and network monitoring in general. You are invited to get involved by asking and answering questions!

Learn more

 

Top Tags


View all Tags


One user in multiple types of Active Directory groups?

Votes:

0

Your Vote:

Up

Down

Hey,

We have set up Active Directory Integration but are kind of struggling with the creation of user groups.

We would like all of the employees to have read-only access. But a separate group of those employees (system engineer) to have read/write access.

So we set up 2 user groups, one with ALL the employees(this includes the system engineers) and one with only the system engineers. With the 'new user type' set to read-only and read/write respectively.

The problem is that when a system engineer logs in he only gets the read-only rights until we delete the 'employees' group. I feel that this should be the other way round, that it should check for the highest privileges the account has, not the lowest.

Is there no other way around this next to creating a group in the Active Directory with all users excluding the system engineers?

Thanks,

Wim

active-directory ad user-accounts user-groups

Created on Mar 27, 2014 4:23:35 PM by  Wim Caudenbergh (60) 1 1



1 Reply

Accepted Answer

Votes:

0

Your Vote:

Up

Down

It seems I was wrong on how the privileges are given to the AD user. PRTG checks the groups alphabetically.

And because 'Employees' comes before the engineers group alphabetically, the engineer that is a member of both groups get the 'Employees' priviliges.

Changing the names of the groups fixes this.

Created on Mar 28, 2014 12:33:20 PM by  Wim Caudenbergh (60) 1 1



Please log in or register to enter your reply.


Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.