<div>
<div class="content wysiwyg-content">
We have one user who occasionally sets up laptops for new users. When he installs any softwares it randomly asks for domain admin password. His logins does not allow that. He has to usually log in as local admin and install<br />
<br />
is there any AD delegated permission i can give so he can install software, create user accounts and reset passwords?
</div>
</div>


We have one user who occasionally sets up laptops for new users. When he installs any softwares it randomly asks for domain admin password. His logins does not allow that. He has to usually log in as local admin and install

is there any AD delegated permission i can give so he can install software, create user accounts and reset passwords?

Delegating Activedirectory permissions

Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.

Windows Server 2008

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.