Permission only to do the cluster fail over activity

Gloria Gu 3,891 Reputation points
2020-07-16T05:48:33.67+00:00

He Team

I do have a requirement to provide an AD account access only fail over cluster management of few servers.
The account shouldn't have any permission to restart\shutdown servers OR any other high privileges on these servers.

Thread source link: https://social.technet.microsoft.com/Forums/windowsserver/en-US/29aa4aa3-3bd0-42b8-950d-7af569022d49/permission-only-to-do-the-cluster-fail-over-activity?forum=winserverClustering

Windows Server Clustering
Windows Server Clustering
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Clustering: The grouping of multiple servers in a way that allows them to appear to be a single unit to client computers on a network. Clustering is a means of increasing network capacity, providing live backup in case one of the servers fails, and improving data security.
958 questions
0 comments
Accepted answer
  1. Xiaowei He 9,871 Reputation points
    2020-07-16T06:22:14.173+00:00

    Hi Sabir_rm,

    Based on my test, the lowest privilege of the account to manage cluster can be a common domain user account that add to every node's local admin group.

    However, as the user account add to nodes' local admin group, it can also restart/shutdown nodes, so, your requirement might not be meet.

    Thanks for your time!

    Best Regards,

    Anne

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest