Difference between revisions of "Active Directory/Documentation/Admin Shortcuts"
Jump to navigation
Jump to search
| Line 1: | Line 1: | ||
| − | It is a good security practice not to use an OU Admin account for everyday computing. However, this can make the administration of your network a pain. Fortunately, the runas | + | It is a good security practice not to use an OU Admin account for everyday computing. However, this can make the administration of your network a pain. Fortunately, the <b>runas</b> command allows you to run programs that need OU Admin priveleges while logged in as a normal domain user. |
The following shows how to runas common OU Admin tools. Simply create a new shortcut, using the below path as the <b>Target</b> and change <userid> to your userid. When you run the shortcut, you will be prompted to type your password, then the tool will launch using the alternate credentials. | The following shows how to runas common OU Admin tools. Simply create a new shortcut, using the below path as the <b>Target</b> and change <userid> to your userid. When you run the shortcut, you will be prompted to type your password, then the tool will launch using the alternate credentials. | ||
| Line 21: | Line 21: | ||
"hcp://CN=Microsoft%20Corporation,L=Redmond,S=Washington,C=US/Remote%20Assistance/ | "hcp://CN=Microsoft%20Corporation,L=Redmond,S=Washington,C=US/Remote%20Assistance/ | ||
Escalation/Unsolicited/Unsolicitedrcui.htm"" | Escalation/Unsolicited/Unsolicitedrcui.htm"" | ||
| + | |||
| + | ==Notes== | ||
| + | * [http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/runas.mspx?mfr=true <b>runas</b> command] | ||
Revision as of 09:35, 4 August 2006
It is a good security practice not to use an OU Admin account for everyday computing. However, this can make the administration of your network a pain. Fortunately, the runas command allows you to run programs that need OU Admin priveleges while logged in as a normal domain user.
The following shows how to runas common OU Admin tools. Simply create a new shortcut, using the below path as the Target and change <userid> to your userid. When you run the shortcut, you will be prompted to type your password, then the tool will launch using the alternate credentials.
- Active Directory Users and Computers
%windir%\system32\runas.exe /user:wolftech\<userid>.admin "mmc %windir%\system32\dsa.msc"
- Group Policy Management Console
%windir%\system32\runas.exe /user:wolftech\<userid>.admin "mmc %windir%\system32\gpmc.msc"
- Computer Management Console
%windir%\system32\runas.exe /user:wolftech\<userid>.admin "mmc %windir%\system32\compmgmt.msc"
- Offer Unsolicited Remote Assistance
C:\WINDOWS\system32\runas.exe /user:wolftech\<userid>.admin "%ProgramFiles%\Internet Explorer\iexplore "hcp://CN=Microsoft%20Corporation,L=Redmond,S=Washington,C=US/Remote%20Assistance/ Escalation/Unsolicited/Unsolicitedrcui.htm""