Multi Tenancy Best Practices
Hi, we already use CP on an existing environment and are making a new environment, a version 2 if you like. We turned on object list mode in the previous environment and it caused us some issues, especially around group policies.
?
I was wondering if you are familiar with any resources on securing a multi-tenant AD environment, its been some years since I have looked into this, perhaps server 2016 has new features which replace OLM etc.
?
Thanks
Stuart
I’m not that familiar with containers in 2016 but the reason you are having issues with group policy is because CloudPanel removes READ access for Authenticated Users which is there by default and it puts AllUsers@CompanyCode on the company organizational unit. If the computer object is within the company OU it will break GPO. What you have to do is add the computer object to AllUsers@CompanyCode or manually grant permissions on the company OU by adding the actual computer object to have read rights.
- 5 Forums
- 716 Topics
- 3,649 Posts
- 0 Online
- 258 Members