richardstuartpowell
asked on
member server delegation
Dear experts,
I am the domain admin for a single active directory domain. Another company wants admin. access to one of our member servers (i.e. we need to hand ownership of this server to them) - what is the best way to do this ? They don't want us to control this server anymore - they want full admin access.
The server in question is just running some basic apps i.e. it is not a DC or running any microsoft services as such - but the server has to stay in our domain - it can't be moved into their domain.
I was thinking of creating a new OU and moving this server into it and then delegating control to this ou to the other comany via group permissions, etc.
Can you let me know if this is the perfect solution to this issue or is there a better way please ?
Thanks in anticipation ...
RP
I am the domain admin for a single active directory domain. Another company wants admin. access to one of our member servers (i.e. we need to hand ownership of this server to them) - what is the best way to do this ? They don't want us to control this server anymore - they want full admin access.
The server in question is just running some basic apps i.e. it is not a DC or running any microsoft services as such - but the server has to stay in our domain - it can't be moved into their domain.
I was thinking of creating a new OU and moving this server into it and then delegating control to this ou to the other comany via group permissions, etc.
Can you let me know if this is the perfect solution to this issue or is there a better way please ?
Thanks in anticipation ...
RP
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for everyone for responding so quickly - all responses well articulated - cheers fellas.
Points split amongst all that responded :-)
Points split amongst all that responded :-)
ASKER
I was hoping to keep things tidy and retain the server in our AD but put it into an OU for them to manage - but I get your point that WE would still have access, so I guess the best way to resolve this is to take this member server out of our domain and stick it into a workgroup all of it's own.
How would you suggest that we then give access (admin access) to this server to the other company ? I was thinking remote desktop ?
Cheers