<div>
you can delegate the rights from AD schema management console by add them in properties -&gt; security tab 
</div>


you can delegate the rights from AD schema management console by add them in properties -> security tab

<div>
All users can read the schema already. &nbsp;All they need is the console.<br />
<br />

</div>


All users can read the schema already.  All they need is the console.



<div>
We are still trying to determine which solution works for us.
</div>


We are still trying to determine which solution works for us.

<div>
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
</div>


This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

<div>
<div class="content wysiwyg-content">
Is there a way to place a small number of users in a AD group that would give them read only access to the AD schema? &nbsp;Might have to create a group if there is not a built-in AD group. &nbsp;Don't want to put them in the Domain Administrator group.
</div>
</div>


Is there a way to place a small number of users in a AD group that would give them read only access to the AD schema?  Might have to create a group if there is not a built-in AD group.  Don't want to put them in the Domain Administrator group.

Read Only User for AD Schema

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).