Weekly Tip 23

Set your SCCM collections up with proper limiting collections to have a hierarchical setup. It makes permissions management much easier.

Example: company XYZ has two offices, one in New York and one in LA. Each office has its own technical support needing SCCM console rights to their respective collections, but not the other office’s. Each office has its own sales, marketing, and accounting staff. Set collections up like this:

DescriptionCollection NameLimiting Collection Name
All Company Computers(all computers from NY and LA)All-XYZ-ComputersAll Systems
All LA ComputersLA-OfficeAll-XYZ-Computers
All NY ComputersNY-OfficeAll-XYZ-Computers
All LA Sales ComputersLA-Sales-ComputersLA-Office
All LA Marketing ComputersLA-Marketing-ComputersLA-Office
All LA Accounting ComputersLA-Accounting-ComputersLA-Office
All NY Sales ComputersNY-Sales-ComputersNY-Office
All NY Marketing ComputersNY-Marketing-ComputersNY-Office
All NY Accounting ComputersNY-Accounting-ComputersNY-Office

Now, when I assign my rights, I will assign New York technical support staff to the NY-Office collection and LA technical staff to the LA-Office collection. Because of the way limiting collections work, granting them access to those two collections will also grant them access to their respective sales, marketing, and accounting collections. Furthermore, for IT staff such as the help desk that needs to see all devices, I can grant them rights to the All-XYZ-Computers collection and they will see LA-Office, NY-Office, and all sales, marketing, and accounting collections.



Contact Us

On Key

More Posts

WME Security Briefing 27 May 2024

Kinsing Hacker Group Exploits Docker Vulnerabilities Overview Recent investigations have shown that the hacker group Kinsing is actively exploiting Docker vulnerabilities to gain unauthorized access to systems. The modified hacker group targets misconfigured Docker API ports deployed with cryptocurrency mining malware.

Read More »
WME Cybersecurity Briefings No. 010
Cyber Security

WME Security Briefing 20 May 2024

Advanced Persistent Threats: North Korean Hackers Launch Golang Malware Overview A new malware strain, called Titan Stealer, is currently actively circulating in the threat landscape, targeting a variety of personal data and linked to North Korean state-sponsored cyber espionage

Read More »
WME Cybersecurity Briefings No. 009
Cyber Security

WME Security Briefing 08 May 2024

Exploitable vulnerability in Microsoft Internet Explorer, used to deploy VBA Malware Overview Cybersecurity researchers discovered a severe exploitation targeting a bug that had already been patched in the Microsoft Internet Explorer browser. Their report added that

Read More »
Be assured of everything

Get WME Services

Stay ahead of the competition with our Professional IT offerings.