I have a web server that I want to keep secured and locked down, however there is 1 user on our web domain that I want to grant access to use IIS manager from her own work station and connect to the webserver. This user is not an administrator nor do we want the user to have administrative rights. Can we just grant access to IIS so the user can create, edit, delete websites as they wish, but not have administrative access to the rest of the server?
How can I do this? I remember it being a sort of local policy or something similar that allows me to lock down who accesses and who can administer the websites on that server, and do this without having them log into the server and launching IIS manager from there.