<div>
No way to do that, &nbsp;the domain admins can always take ownership if they really wanted to.<br />
...the answer there is to limit the number of domain admins and keep that group small.<br />
The domain admins have rights to your entire forest (forest is the security boundary)<br />
Now if you notice domain admins going in and taking ownership and looking at things they should not be....those people should be fired...no other way to put it.<br />
&nbsp;<br />
Thanks<br />
Mike<br />

</div>


No way to do that,  the domain admins can always take ownership if they really wanted to.
...the answer there is to limit the number of domain admins and keep that group small.
The domain admins have rights to your entire forest (forest is the security boundary)
Now if you notice domain admins going in and taking ownership and looking at things they should not be....those people should be fired...no other way to put it.
 
Thanks
Mike


<div>
How about ways to audit access to a specific folders to see who is trying to access them?
</div>


How about ways to audit access to a specific folders to see who is trying to access them?

<div>
<div class="content wysiwyg-content">
We are a small company with three IT admins that all have Domain Admin permissions. &nbsp;Looking for ways to restrict ITs access to sensitive company information like HR and Finance data stored on out file server. &nbsp; All three of the IT members have overlapping responsibilities on the network so generally need network admin abilities. &nbsp;Are there some ways to keep data secure from IT even with admin rights?
</div>
</div>


We are a small company with three IT admins that all have Domain Admin permissions.  Looking for ways to restrict ITs access to sensitive company information like HR and Finance data stored on out file server.   All three of the IT members have overlapping responsibilities on the network so generally need network admin abilities.  Are there some ways to keep data secure from IT even with admin rights?

Restricting domain admins from confidential data

Project management is the discipline of carefully projecting or planning, organizing, motivating and controlling resources to achieve specific goals and meet specific success criteria. A project is a temporary endeavor designed to produce a unique product, service or result with a defined beginning and end (usually time-constrained, and often constrained by funding or deliverables) undertaken to meet unique goals and objectives, typically to bring about beneficial change or added value.

Project Management

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.