0 votes

Is it possible to create a security role that would only allow disabling accounts, but not enabling?

by (950 points)

1 Answer

+1 vote
by (18.0k points)
selected by
Best answer

Hello,

I suggest you create a Custom Command to disable user accounts. Then you'll need to grant users the right to execute the Custom Command.

For more details, see Create a Custom Command.

0

Works great. Thank you.

Related questions

0 votes
1 answer

Hello, I was wondering if there is a way to schedule (pick a date & time) when a user is enabled/disabled or any advice on how I could achieve this? Thanks! Adrian

asked Nov 3, 2014 by apadilla33 (50 points)
0 votes
1 answer

I have 18 domains managed by Adaxes and have noticed that Admin (full access) t all objects acts normally, but for piecemeal scopes like Service Desk that scopes to individual ... role (including 16 denies) and expect it to grow as we add more domains.

asked Sep 20, 2022 by DA-symplr (100 points)
0 votes
1 answer

I need to replace one Active Directory security group that has been given rights over many OUs within several Security Roles. There are likely ~300 entries that need ... in the SDK documentation appears to be broken - http://adaxes.com/scriptrepository

asked May 1, 2013 by SomeUser (90 points)
0 votes
1 answer

What specific permission is needed in a security role to grant access to enable a user account?

asked Dec 7, 2023 by mightycabal (1.0k points)
0 votes
1 answer

When a new user account is created by copying an existing one, is it possible to prevent the new account from becoming a member of security groups in a specific OU (when the ... same way as the account being added to the group, which I need for audit purposes.

asked Sep 28, 2020 by markcox (70 points)
3,588 questions
3,277 answers
8,303 comments
548,094 users