I was wondering something. I know with 2008 you can make a DC read-only, but I was wondering if there was some way to make a 2003 DC read-only too?
Here is my scenario:
1 main site (PDC resides here along with a couple other DCs for backup purposes)
3 remote sites (each site has a DC)
I would like to make the 3 remote site DCs read-only, if not then I will have to change the admin password to keep my level 1 tech hands out of the cookie jar, but they really need to have access to a couple of the programs on the server at those sites. It would be nice to just make sure they could not make any changes the AD from those sites.
Thanks for your time.