In order to allow additional users to use GPA, you’ll need to add them to the GPA security framework. Specifically, this means two things; they’ll need a repository user account (actually a SQL account), and they’ll need their AD account given permissions to objects in the GP Repo.
Today I had the pleasure of working through an application problem with somebody via e-mail. LDAP is a standards-based method for querying directories like eDirectory, OpenLDAP, etc. and generally does a great job of making that possible. Applications that need to get user information from a directory should do so via LDAP, and systems that…
Need to copy eDirectory trustee assignments from one object to another? Here is a tool to do it.
This tip from Jim Henderson shows how to remove rights from many users with a simple procedure.
Aaron Burgemeister has some advice for getting admin rights set up in your tree, with consideration for roles and drivers.
David Gersic explains a strategy for getting a temp admin ready to edit users, without granting full system rights.
Wolfgang Schreiber shares a quick tip on creating an iManager role that just allows renaming users.