If you want have managers over such NDS information as passwords, information fields, login security, accounting, or any other specific properties, you can give those managers rights to those specific properties. If you apply those rights at a container level, the rights can be inheritable to an entire branch of the NDS tree.
This feature is available only with versions of NDS that ship with NetWare 5 or later.
If necessary, create a User, Group, Organizational Role, Alias, or container object that you want to be a trustee over the specific properties.
If you create a container as trustee, all objects below that container in the tree will have the rights you grant.
Drag the object that represents the desired manager onto the highest-level container that you want the role-based administrator to manage.
Under Property Rights, click Selected Properties.
Scroll to the specific property rights you want to grant.
Normally you select multiple properties for a given role. For instance, to allow administration of passwords, you can select any or all of the following specific properties (using Ctrl-click):
Click the Inheritable check box if you want the assignment to apply to the entire tree beneath the target container.
Click OK.