What rights do student helpdesk staff need to administer user objects in AD?
Posted on 2006-07-10
I am the administrator for a high school, and beginning this year, I will have several students working with my manning a helpdesk. We run a Windows 2003 network.
I would like them to be able to reset passwords, add/remove group assignments, modify user object properties (name, etc), and printer assignments.
Does anyone know of any built-in security groups of policies that will allow this to happen easily?