I have a new client,
they have a terminal server that is configured as an AD server (backup to the main SBS server).
Because of this there is no local users/groups to add users to a remote users group.
the previous provider solved this problem by making all users domain administrators.
I want to remove all users from domain admins - and start to assign some normal security.
I want to remove the terminal server from being an AD server, so it remains a domain member but doesnt have AD.
I dont want to lose any of the profiles etc already on the Terminal server.
or..given that it is handy to have a backup domain controller (in theory) is there a way around this?
It is only a small 10 user network.
At other sites I simply have the terminal server as a member server.
thanks in advance