I have a simple request from a customer. They're running Small Business Server 2011 and are having a problem with a domain admin getting into the server. To detour additional conflict they have asked me to block their account from accessing the server. How would I do this? I figured it would probably be a GPO of some sort but can I do this on the local level to block a domain account. They're logging in both locally and remotely.