My scenario is the following:
I have two groups: one with about 50 workstations used by employees (payroll, pension, financial records), and another one used by students (25 PCs)who come and go (obviously insecure because people come from the outside all the time).
They are currently under one domain and one network. We are looking to upgrade them. What would be the best option? Two separate networks with separate DC, DNS, DHCP in each network? Please, let me know what other options could be and if this is the best solution.