Hi Martin,
Regarding your question, it is possible. But if you need to do
something like that my suggestion is that you make specific consoles
for these "administrators". Where they can only access that specific
console, and it only has your defined actions. Also, look at the GPO
features, you weren't specific on that so I don't know if these w2k
machines are on a win2k/win2k3 domain or if it is a workgroup, either
way you can assign GPO's that could do whatever you want.
Anyway, what you are asking doesn't seem to have much to do with the
runas feature. That feature only enables you to run an application
with different rights than those that you logged in the network.
Hope that helped...
On 6/12/05, martin <gremagehan@web.de> wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello,
maybe I'm not understand the runas-feature, but it is not following the same?
1.1) login as Admin
1.2) double-click on some App
2) call some Application as following: "runas /user:Administrator
<application.exe>
I have W2K for workstations. I can create a new user with admin privilegs but
I don't see howto restrict some rights (e.g. my admin2 should be able to
install new applications but he should not be able create a new user)
Int is possible?
Thanks in advice
Martin
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
iD8DBQFCrAaj9w5olJf0Oq8RAhj2AJwLcU07wUpiIFnv/W8cVIlRc5w+ZACfRrAF
MzW60F6u1reG/2Lxd8IOaiU=
=V3Wf
-----END PGP SIGNATURE-----
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
