member server delegation
Posted on 2008-11-03
I am the domain admin for a single active directory domain. Another company wants admin. access to one of our member servers (i.e. we need to hand ownership of this server to them) - what is the best way to do this ? They don't want us to control this server anymore - they want full admin access.
The server in question is just running some basic apps i.e. it is not a DC or running any microsoft services as such - but the server has to stay in our domain - it can't be moved into their domain.
I was thinking of creating a new OU and moving this server into it and then delegating control to this ou to the other comany via group permissions, etc.
Can you let me know if this is the perfect solution to this issue or is there a better way please ?
Thanks in anticipation ...