Adaxes

Group Managed By

0 votes

I've just been handed management of Adaxes and I'm looking for a bit of help.
My first task is to allow our Admin staff using the Web Interface to Add a "Managed By" User to a Global Security group or Distribution List using a Group manager Web Interface.
I also need to add a "Secondary Manager" which I know is [ms-Exch-Co-Managed-By-Link], but I'd like this to appear in the Web Interface as a List with "Secondary Managers" appearing at the top as the title of the List.
I also wondered whether it is possible for secondary managers to update the membership list and whether this requires an attribute to show within the Interface.

Any help would be much appreciated.
Thanks

by (150 points)

1 Answer

0 votes
by (289k points)
selected by
Best answer

Hello Alan,

My first task is to allow our Admin staff using the Web Interface to Add a "Managed By" User to a Global Security group or Distribution List using a Group manager Web Interface.

To achieve what you need, have a look at the following tutorial: http://www.adaxes.com/tutorials_WebInte ... diting.htm. Following the steps in the tutorial you can add Managed By and ms-Exch-Co-Managed-By-Link properties to View and Modify group forms.

I also need to add a "Secondary Manager" which I know is [ms-Exch-Co-Managed-By-Link], but I'd like this to appear in the Web Interface as a List with "Secondary Managers" appearing at the top as the title of the List.

Have a look at the following help article: http://www.adaxes.com/help/?HowDoI.Mana ... Names.html.

I also wondered whether it is possible for secondary managers to update the membership list and whether this requires an attribute to show within the Interface.

Yes, it is possible. To grant rights to add/remove members from groups to Secondary Managers, you will need to create a Security Role and a Business Unit. The Business Unit will contain groups that have the currently logged on user specified in the ms-Exch-Co-Managed-By-Link property. The unit will be used in the Activity Scope of the Security Role. To create the Business Unit:

  1. Launch Adaxes Administration Console.
  2. Right-click your Adaxes service node, navigate to New and click Business Unit.
  3. On step 2 of the Create Business Unit wizard, click Add.
  4. Select Query Results and enter the following into the Filter field: (&(objectCategory=group)(msExchCoManagedByLink=%distinguishedName%)).
  5. Click OK twice and finish creating the Business Unit.

To create a Security Role that grants users permissions for Secondary managers to modify group membership:

  1. Launch Adaxes Administration Console.
  2. Right-click your Adaxes service node, navigate to New and click Security Role.
  3. On step 2 of the Create Security Role wizard, click Add.
  4. Select Only selected object types and then select Group Object type.
  5. Check the Write 'Member' Property permission in the Allow column and click OK.
  6. Click Next and double-click Authenticated users.
  7. Select Business Units in the Look in drop-down menu.
  8. Double-click the Business Unit you have created.
  9. Click OK twice and finish creating the Security Role.You should have something like the following:
0

Thanks very much. I'll follow the instructions and let you know how I get on.

by (150 points)
0

Thank you.
It does exactly what I required.

by (150 points)

Related questions

0 votes
1 answer
Possible for Group 'Managed By' Value to Inherit Parent OU 'Managed By' Value?

Is it possible to for security groups that are nested under an OU to inherit that OU's 'Managed By' value? I'd like to grant the OU Owner rights to the security groups ... option is to manually edit each group one by one. Is there a script that automates this?

asked Mar 26, 2020 by sirslimjim (480 points)
0 votes
0 answers
Security/Distribution Group Managed By

Prior to Exchange/Outlook 2010 you could use a security group to manage these distribution groups. I am using Adaxes Administration Console 2015 ver: 3.7.12314.0 (64 ... is off a secondary person already has permissions and can make the necessary changes. Mark

asked Aug 25, 2016 by mreny (40 points)
0 votes
1 answer
Allow person in 'Managed By' field to modify group members?

Hey there, We allow our staff to modify membership to certain AD groups by designating a person in the 'Managed By' field. That person then changes the group' ... to modify group membership' without any object specific configuration. Is this possible? Thanks!

asked Nov 8, 2011 by Kirk (60 points)
0 votes
1 answer
In order to add a managed domain does it have to be trusted by the primary domain adaxes is installed an running in?

In order to add a managed domain does it have to be trusted by the primary domain adaxes is installed an running in? I have set up a domain for testing adaxes and it ... I have set my host file to point the untrusted domain to it's primary Domain Controller.

asked Oct 5, 2022 by mightycabal (1.0k points)
0 votes
1 answer
How it works if I have multiple accounts in one domain, and other accounts in others domains managed by Adaxes ?

Hello, How it works if I have multiple accounts in one domain, and other accounts in others domains managed by Adaxes ? Thank you. Regards. Pierre

asked Jun 9, 2021 by pierre.saucourt (40 points)
3,547 questions
3,238 answers
8,232 comments
547,809 users