0 votes

Hi All,

I was following the following documentation

https://www.adaxes.com/tutorials_DelegatingPermissions_GrantRightsToModifyADGroupMembership.htm

However I cannot work out how to make it so that a user can only add themselves to a distribution group?

I have tried adding the Business rule 'if the initiator isnot the %initiator%' however this stops the user adding themselves.

In an ideal world I want the setup to be the owner of the group can add anyone, but users can only add themselves.

Any help would be great.

Many Thanks

by (440 points)

1 Answer

+1 vote
by (220k points)
selected by
Best answer

Hello,

Unfortunately, there is no possibility to grant the permissions the way you need. It is only possible to grant the permissions to modify the Member property of the group, not limit the members that can be added. The approach with a Business Rule triggering Before adding a member to a group is exactly what you need. In the rule, you will need to use two conditions to check whether a user is adding themselves to the group and whether the initiator is the owner of the group. Finally, the Business Rule will look like the following: image.png

0

Thank you very much that business rule worked perfectly

Related questions

0 votes
1 answer

I'd like to allow users to remove themselves from groups that they are already members of. Currently I have a business rule in place thats only allowing the OU Owners ... user is a member of the adm-groupname' then allow then to remove themselves.

asked Apr 30, 2020 by sirslimjim (400 points)
0 votes
1 answer

I would like users to use Adaxes to add themselves or others to a group, but instead of it just working, it has to go thru an approval process and be approved by the group owner before they are added. Thanks!

asked Jun 30, 2021 by RayBilyk (180 points)
0 votes
1 answer

How can I allow manager of distribution group to edit just email aliases (proxy addresess) of that group? Not the primary SMTP address.

asked Nov 19, 2019 by KIT (520 points)
0 votes
1 answer

We have RBAC groups inside an OU. We would like to restrict users from being added to multiple RBAC groups at a time. For example: RBAC Roles OU Sales RBAC Group ... groups outside of this OU structure though. What's the best way to achieve this? Thanks

asked Oct 13, 2021 by bavery (250 points)
0 votes
1 answer

I have tried using this Powershell script but it gives me this error

asked Apr 1, 2021 by rujimg (40 points)
2,737 questions
2,471 answers
6,466 comments
1,350,783 users