I'd like to take control of Active Directory. If I set an OU with a delegate control, do I have to include my account with Full Control first. Or do I just go ahead and delegate control to my coworkers with rights to unlock account, change password, etc.?
In addition, how do you go about securing your Active Directory at work? I'm sure there are some irresponsible network people in your dept.! Speaking from current work nightmare!!!!