0 votes

What is the minimum permission required to move user accounts between OUs?

by (950 points)

1 Answer

0 votes
by (18.0k points)


The user must have the following permissions:

  • delete AD objects from the source OU,
  • create new objects in the destination OU,
  • have the Write permission for the Name and CN (Full Name) properties of the source object.

In the next version the last permission will not be required if the object name is not changed during the operation.



Adaxes 2012.1 introduces two new permissions for Security Roles:

  • Move Objects from - allows users to move AD objects from a given OU.
  • Move Objects to - allows users to move AD objects to a given OU.

With the help of the new permissions, you can allow users to perform the Move operation without giving them rights to delete and create objects.


Related questions

0 votes
1 answer

I have a root OU that I created called Disabled. I want to give the Computer Manager role the necessary permissions to move a computer to any OU/sub tree desired. They can ... -in computer OU but nothing else. What Permissions do I need to give them? Thanks!

asked Apr 30, 2012 by mpaul (360 points)
0 votes
1 answer

I would like to know if it is possible to create a field in the web UI under user management to "assign" a machine to a user. I would like to be able to put the ... be moved to "workstation OU. Is there s custome field that can be used to accomplish this?

asked Oct 22, 2020 by copatterson (70 points)
0 votes
1 answer

For context, up until now, we had a business rule in place stopping accounts from being created for users with the same name e.g. Jacob Smith and Jacob Smith. This business ... , or how to, if possible, remove this. Any help would be most appreciated! Thanks

asked Oct 22, 2024 by Charlie.Evans (70 points)
0 votes
1 answer

Hello all, I'm sure this is possible, but I'm confused on a few points. I'm trying to set up the security role and matching homepage action that will allow a user ... I'd like to use the least amount of permissions possible, just for security's sake. Thanks!

asked Jan 18, 2017 by ctdhelpdesk (190 points)
0 votes
1 answer

What permissions does a Trustee (Specifically a Manager or Owner) need over a Managed Object to make it visible in their My managed objects? The Trustee can view their ... missing read permissions of specific attributes, which are the minimum I need to allow?

asked Nov 2, 2023 by Viajaz (210 points)
3,628 questions
3,315 answers
548,706 users