decaflame Posted January 15, 2013 Report post Posted January 15, 2013 We are currently trying to grant access to certain technicians that reimage PCs to delete computer accounts out of the SCCM 2012 console. There are several reasons for wanting this, but I can't seem to locate a specific security role or permission that grants just this ability to a user. There are ways to grant the ability to delete (add, read, etc.) users, but a corresponding permission for devices/computers doesn't seem to exist that I can see. Does anyone have a suggestion about doing this? We'd rather not grant them Full Administrator rights for obvious reasons. Thanks, -Chris Quote Share this post Link to post Share on other sites More sharing options...
GarthMJ Posted January 16, 2013 Report post Posted January 16, 2013 This is not answer your question directly, but one of my client created a web interface to allow the Service Desk to delete PC from CM07/CM12. Since it was a web interface security was control at the website and one 1 account has access to CM07/CM12. Also by using the web interface they controlled what they could see there too. Quote Share this post Link to post Share on other sites More sharing options...
decaflame Posted January 16, 2013 Report post Posted January 16, 2013 Thanks Garth, but this particular client just wants to grant that singular role to one person (they're pretty small). I'll float the website out there as a solution, since it's a perfectly legitimate workaround, but I'd still like to know what permission needs to be granted to make it so users within SCCM can delete computer resources. Quote Share this post Link to post Share on other sites More sharing options...
