Announcement

Collapse
No announcement yet.

Removing inherited permission without unchecking

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Removing inherited permission without unchecking

    Hi,

    Is there a way to remove inherited permissions in the ACL of a OU without unchecking "Allow inheritable permissions from parent to propagate..."? We have some unknown accounts that were removed from the parent OU but the removal did not propagate down to the child OU because we exceeded ACL size limitation. I know we can Uncheck "Allow inheritable ..." checkbox to remove the unknown accounts in the ACL but that causes problem for Exchange mail delivery. Does anyone have any suggestions on how we can force delete the entries without unchecking the inheritable checkbox?

    Thanks.

  • #2
    Re: Removing inherited permission without unchecking

    If the entries are inherited, you can not remove them until you have removed (and copied) inheritance

    I suppose you could add a deny, but then you may have problems as it beats everything else
    Tom Jones
    MCT, MCSE (2000:Security & 2003), MCSA:Security & Messaging, MCDBA, MCDST, MCITP(EA, EMA, SA, EDA, ES, CS), MCTS, MCP, Sec+
    PhD, MSc, FIAP, MIITT
    IT Trainer / Consultant
    Ossian Ltd
    Scotland

    ** Remember to give credit where credit is due and leave reputation points where appropriate **

    Comment

    Working...
    X