<div>
<div class="content wysiwyg-content">
Hello All,<br />
<br />
I am looking to lock down some more junior administrators on site. &nbsp;I am pretty familiar with the Delegation wizard and was looking to use this for the more basic tasks - Ultimately in some cases I want to remove the Domain Administrator rights. &nbsp;<br />
<br />
I am looking to achieve the following and would appreciate the experts view on this:<br />
<br />
Admin needs to be able to add remove users etc - Delegation Wizard any need to create custom task pads?<br />
Admin needs to be able to install drivers locally / remotely using RDP - Restricted Groups?<br />
Admin should NOT be able to create or link group policies.<br />
Admin should be allowed to add and manage print servers / file shares<br />
Admin will need to be able to create administer mail boxes in Exchange 2010<br />
<br />
I was looking to create a new Security Group Junior Admins - add that into restricted groups (adding rather than replacing) to provide local admin rights over the computers / servers within OU's specified. &nbsp;<br />
<br />
<br />
Does anyone solutions to the other aspects above?
</div>
</div>


Hello All,

I am looking to lock down some more junior administrators on site.  I am pretty familiar with the Delegation wizard and was looking to use this for the more basic tasks - Ultimately in some cases I want to remove the Domain Administrator rights.  

I am looking to achieve the following and would appreciate the experts view on this:

Admin needs to be able to add remove users etc - Delegation Wizard any need to create custom task pads?
Admin needs to be able to install drivers locally / remotely using RDP - Restricted Groups?
Admin should NOT be able to create or link group policies.
Admin should be allowed to add and manage print servers / file shares
Admin will need to be able to create administer mail boxes in Exchange 2010

I was looking to create a new Security Group Junior Admins - add that into restricted groups (adding rather than replacing) to provide local admin rights over the computers / servers within OU's specified.  


Does anyone solutions to the other aspects above?

Junior Administrators - Delegation

Windows Server 2012 is the server version of Windows 8 and the successor to Windows Server 2008 R2. Windows Server 2012 is the first version of Windows Server to have no support for Itanium-based computers since Windows NT 4.0. Windows Server 2012, now in its second release (Windows Server 2012 Release 2) includes Foundation, Essentials, Standard and Datacenter, and does not support IA-32 or IA-64 processors.

Windows Server 2012

The Microsoft Legacy Operating System topic includes legacy versions of Microsoft operating systems prior to Windows 2000: All versions of MS-DOS and other versions developed for specific manufacturers and Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions, and Windows Mobile.

Microsoft Legacy OS

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.