Active Directory Users and Computers is a management console in Microsoft Windows 2000 that can be used for administering Active Directory objects and information published in the directory.

Using Active Directory Users and Computers, you can perform common administrative tasks such as

• Creating a new user, group, shared folder, computer, printer, or other resource
• Creating new organizational units (OUs) for organizing directory objects
• Moving directory objects to different organizational units
• Deleting objects from the directory
• Displaying and editing the properties of directory objects
• Managing group policies and changing domain controllers
• Finding objects within Active Directory database

To start Active Directory Users and Computers, choose Programs from the Start menu, choose Administrative Tools, and then choose Active Directory Users And Computers.

Assigning permissions to network resources

If you want to quickly assign permissions to network resources such as file shares, printers, users, and groups in your enterprise, simply move their associated directory objects to different servers that require the same permissions to the same OU. Objects inherit permissions from their new OU and lose permissions from their old OU. However, permissions assigned directly to an object are moved together with the object. 
Need to learn more? Best deals from Amazon: Windows Server 2016 Inside Out (includes Current Book Service)