AD Users and computers snap in from Client Machine
I'm delegating some AD responsibility to some users and i want to know how to give them access to AD to perform the delegated tasks. I know you have to ins tall Windows 2003 admin tools for them to have AD mmc available.
Is there a way around that. I dont want users to access any other tools in the admin tool and preferably i dont want them to even see other containers than the one they are delegated for.
Any ideas on how to give them access to AD without installing Admin tools. Also is there a way to prevent them from seeing other containers...