Hey Everyone,
We are wondering what the best practice is for managing computer object security underneath ITMS. The reason I ask is that at present, all of our desktops and servers are on the same NS, but there has been some discussions about migrating servers to a standalone NS. We have not found a way to prevent non server admins from seeing objects that only server admins should see the way DS 6.9 used to. Does anyone recommend this?
Also, if a user is logged into the NS and has permissions to execute a task and tries to run it on a computer with an agent and the proper plugins installed, what prevents the user from accidently running it against the the wrong type of computer? In other words, is there a way to prevent GROUP X from executing JOB Y on COMPUTER Z?
Thanks much.