I got some questions regarding the DOMAIN admins group that is builtin in the Active Directory.
1. Does the DOMAIN Admin group are automatically put as member of the each servers local Administrators group once the server is joined to the AD domain ?
2. I'd like to remove some members of the IT helpdesk support team from the Domain Admins group but I still want them to be able to login to certain server and perform the restart when necessary and nothing else. Does placing them under the local server Power Users allow them to reboot the server ?