+ Post New Thread
Page 2 of 3 FirstFirst 123 LastLast
Results 16 to 30 of 32
Network and Classroom Management Thread, Teacher wants to access active directory... in Technical; Originally Posted by bossman Are you sure it's user profiles and not their documents as in their my docs directory. ...
  1. #16

    Join Date
    Nov 2006
    Location
    Reading, UK
    Posts
    487
    Thank Post
    30
    Thanked 14 Times in 8 Posts
    Rep Power
    18

    Re: Teacher wants to access active directory...

    Quote Originally Posted by bossman
    Are you sure it's user profiles and not their documents as in their my docs directory.

    I delegate the mmc out to teachers so that they can reset user passwords and give out more printer credits they can also go into user accounts and see the pupils work as well. It also gives them the capacity to turn off the internet for that user.
    Same setup here!

  2. #17

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,607
    Thank Post
    514
    Thanked 2,441 Times in 1,889 Posts
    Blog Entries
    24
    Rep Power
    828

    Re: Teacher wants to access active directory...

    All teachers in our school have access to all pupils home directories as a simple shared drive. They currently don't have access to anything else.

    My boss, the bursar, is a domain admin - and a pile of documentation on how to do things should I, for some reason, be off for a prolonged period of time.

    Thats it. The only other people with admin accounts are our sims support team/county council support team.

    No-one else is permitted to access the AD, and if it were requested I would throw all the toys out of my pram :P

  3. #18

    Join Date
    Nov 2006
    Location
    Reading, UK
    Posts
    487
    Thank Post
    30
    Thanked 14 Times in 8 Posts
    Rep Power
    18

    Re: Teacher wants to access active directory...

    I understand where you're coming from; perhaps your end users aren’t as forgetful as everyone I've worked with.

    Allowing our IT Teaching staff (who have basic IT skills) to be able to reset students passwords using Delegation of Control and a Custom MMC, this has allowed for my life to no longer be taken up by silly password resets!

    The IT teaching staff can only reset student passwords from our Top Level Pupils OU through to the entry years of the students. Using a custom MMC they can’t see the other OU’s nor have any control over them.

  4. #19

    SpuffMonkey's Avatar
    Join Date
    Jul 2005
    Posts
    2,229
    Thank Post
    54
    Thanked 277 Times in 185 Posts
    Rep Power
    134

    Re: Teacher wants to access active directory...

    Our teaching staff refused to be allowed to change student passwords as it was an "admin" job. They're still happy to waste time on the phone requesting them though.

  5. #20

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,607
    Thank Post
    514
    Thanked 2,441 Times in 1,889 Posts
    Blog Entries
    24
    Rep Power
    828

    Re: Teacher wants to access active directory...

    Quote Originally Posted by plock
    I understand where you're coming from; perhaps your end users aren’t as forgetful as everyone I've worked with.

    Allowing our IT Teaching staff (who have basic IT skills) to be able to reset students passwords using Delegation of Control and a Custom MMC, this has allowed for my life to no longer be taken up by silly password resets!

    The IT teaching staff can only reset student passwords from our Top Level Pupils OU through to the entry years of the students. Using a custom MMC they can’t see the other OU’s nor have any control over them.
    Oh, they forget! Our year 5's forget how to spell their own names - and that is obviously the server's fault.

  6. #21

    Join Date
    Nov 2006
    Location
    Reading, UK
    Posts
    487
    Thank Post
    30
    Thanked 14 Times in 8 Posts
    Rep Power
    18

    Re: Teacher wants to access active directory...

    Would you prefer to spend time resetting passwords than completing useful tasks such as improving network performance?

    There is no harm in Delegating Control of ONLY the ability to reset STUDENT passwords from my point of view.

  7. #22

    Join Date
    Mar 2007
    Posts
    307
    Thank Post
    3
    Thanked 9 Times in 8 Posts
    Rep Power
    16

    Re: Teacher wants to access active directory...

    Teachers cannot change passwords and when brought up it was decided it was not their job so would not do it. We do have a couple of teachers who can browse through to pupils areas to access work etc. This has saved time when pupils are working in groups and one of them is off.

    As for access to the server, I doubt anyone would want it and I certainly wouldn't give it them. Not without a big disclaimer covering me anyway

  8. #23

    Join Date
    Nov 2006
    Location
    Reading, UK
    Posts
    487
    Thank Post
    30
    Thanked 14 Times in 8 Posts
    Rep Power
    18

    Re: Teacher wants to access active directory...

    I agree no access to the server, including Active Directory! Only a Custom MMC which allows them access to the Pupils OU with only 'password reset' rights.

    In my experience the IT teaching staffs have been more than willing to complete this. Firstly they admit it speeds up their lessons and saves us time.

  9. #24

    Join Date
    Aug 2007
    Location
    Margate
    Posts
    5
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Re: Teacher wants to access active directory...

    Thanks for the responses.

    Apologies for the confusion, the teacher hasnt stated that she'd want to view students 'my docs' folders. Just their user profile ala active directory. I'd like to let her use active directory but in a very limited capacity. Without giving her admin rights and/or giving her the password to the server. So a shortcut on her desktop/start menu to a restricted active directory is what I'm after.

    The teacher wants to be able to view pupil/staff's username, so that she can see if whatever theyre typing isnt using the correct upper or lower case characters. She wants to be able to view the usernames in a list so that at a glance she can see. what the situation is.

    To top it off she'd like to be able to reset the passwords.

    Ive tried the custom mmc suggestion. So she'd be able to view/reset users/passwords. However as the active directory is on the server, I am unable to create a working shortcut to the mmc I created.

  10. #25

    Join Date
    Mar 2007
    Posts
    307
    Thank Post
    3
    Thanked 9 Times in 8 Posts
    Rep Power
    16

    Re: Teacher wants to access active directory...

    If they want to check usernames, you can just export them into an excel spreadsheet. As for password changes, I dont allow it so dont know, but following the instructions from all those have said should help.

  11. #26
    ChrisH's Avatar
    Join Date
    Jun 2005
    Location
    East Lancs
    Posts
    4,998
    Thank Post
    120
    Thanked 280 Times in 258 Posts
    Rep Power
    106

    Re: Teacher wants to access active directory...

    You can save the MMC and send it her.

  12. #27

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,802
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Teacher wants to access active directory...

    The teacher wants to be able to view pupil/staff's username, so that she can see if whatever theyre typing isnt using the correct upper or lower case characters. She wants to be able to view the usernames in a list so that at a glance she can see. what the situation is.
    Login usernames are not case sensitive. Even so, I suspect the spreadsheet approach will work for this.

    To top it off she'd like to be able to reset the passwords.
    I think Delegation with a cut down MMC is the way to go with this.

  13. #28

    bossman's Avatar
    Join Date
    Nov 2005
    Location
    England
    Posts
    3,905
    Thank Post
    1,186
    Thanked 1,057 Times in 749 Posts
    Rep Power
    328

    Re: Teacher wants to access active directory...

    @Olumite: I would be asking the teacher what qualifies her to ask for this and what information does she expect to glean from access to the AD.

    Is it for some sort of research that she is doing if so setup a server on VM with all the access rights that she needs and let her play nice.

    I think what she is asking is really outside her remit as a teacher but then that is my own views on this.

  14. #29

    bossman's Avatar
    Join Date
    Nov 2005
    Location
    England
    Posts
    3,905
    Thank Post
    1,186
    Thanked 1,057 Times in 749 Posts
    Rep Power
    328

    Re: Teacher wants to access active directory...

    Sorry Geoff: didn't read your post fully.

    I totally agree with your solution.

  15. #30

    Ric_'s Avatar
    Join Date
    Jun 2005
    Location
    London
    Posts
    7,590
    Thank Post
    109
    Thanked 762 Times in 593 Posts
    Rep Power
    180

    Re: Teacher wants to access active directory...

    You will need the adminpak installed on the client that you want to run your MMC from. Then simply delegate control and away you go.

SHARE:
+ Post New Thread
Page 2 of 3 FirstFirst 123 LastLast

Similar Threads

  1. active directory all messed up
    By alonebfg in forum Windows
    Replies: 2
    Last Post: 7th January 2008, 08:25 PM
  2. PDA and Active Directory
    By localzuk in forum Windows
    Replies: 4
    Last Post: 10th October 2007, 03:54 PM
  3. script for active directory
    By chalkwellstu in forum Scripts
    Replies: 8
    Last Post: 24th September 2007, 01:53 PM
  4. Active Directory Design
    By tscnmuk in forum Windows
    Replies: 7
    Last Post: 27th February 2007, 03:13 PM
  5. Replies: 4
    Last Post: 10th November 2006, 11:28 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •