Lync Server has adopted the Role Based Access Control (RBAC) administrative model to allow for easy delegation of administrative tasks. To get you started, there are some default groups created:
Note that you can create your own custom roles if desired by using the “New-CsAdminRole” command.
There is a simple command that can be used to determine what role is needed in order to execute specific commands. This will allow you to identify what exact role a user will need to run the desired task.
Use the following command:
Get-CsAdminRole | Where-Object {$_.Cmdlets –match “command”}
Here are a few examples…
When running the command with “New-CsLocationPolicy”, you will notice that CSAdministrator, CSVoiceAdministrator, or CSServerAdministrator can run this command.
When running the command with “New-CsClientPolicy”, you will notice that CSAdministrator or CSServerAdministrator can run this command.
No comments:
Post a Comment