Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 15 Current »

You must create a provisioned group for administrators to ensure that you can enforce administrator rights. After you have created a provisioned group, make sure that you apply the provisioned group to a provisioning policy . Group provisioning policies preserve the integrity of your local group accounts.

To Create a Provisioned Group for Administrators

  1. From the Arellia Security Manager Console, go to the Policies tab.
  2. Navigate to PoliciesArellia / Local Security / Resources / Provisioned Groups.
  3. Right-click Provisioned Groups and click New / Provisioned User Groups or click the New button and choose Provisioned User Groups.
  4. In the New Provisioned Group window under Settings / Account Name, click Standard and choose Administrators.
  5. To enforce exact membership (exact membership ensures that the correct resources are always in the group, but doesn't enforce any other resources) in the Administrators Group, check Exact membership.
  6. To include the primary user (a primary user is the user that logs on most frequently to a particular machine), check Include primary user.
  7. Under Group Membership, go to the Include tab. Select Built-in users. Always include the Built-in Administrator Account.

    Include or Exclude Resources

    Every resource that you add under the Include tab will ALWAYS be included in the group. Every resource that you add under the Exclude tab will NEVER be included in the group.

    You can include or exclude the following resources:
  • Built-in users
  • Domain groups
  • Users


  • No labels