<div>
<div class="content wysiwyg-content">
Our AD environment consists of a single forest that contains multiple child domains. &nbsp;<br />
<br />
Structure is as follows:<br />
<br />
Forest Root Domain<br />
Child APP Domain - Domain used for shared application hosting, including Exchange 2013<br />
Child Opco Domain A - Operating Company Domain<br />
Child Opco Domain B - Operating Company Domain<br />
Child Opco Domain C - Operating Company Domain<br />
Child Opco Domain D - Operating Company Domain<br />
<br />
My question is this. &nbsp;Is it possible to delegate Exchange administrative access to a child domain admin, and only allow this domain admin the rights to administer only the Exchange objects within their respective domain.<br />
<br />
The goal is to allow Opco domain admins the ability to administer all AD objects within their domain, but only allow administrative rights to only the Exchange objects that are within their domain. <br />
<br />
Is this possible?<br />
<br />
Thank you.
</div>
</div>


Our AD environment consists of a single forest that contains multiple child domains.  

Structure is as follows:

Forest Root Domain
Child APP Domain - Domain used for shared application hosting, including Exchange 2013
Child Opco Domain A - Operating Company Domain
Child Opco Domain B - Operating Company Domain
Child Opco Domain C - Operating Company Domain
Child Opco Domain D - Operating Company Domain

My question is this.  Is it possible to delegate Exchange administrative access to a child domain admin, and only allow this domain admin the rights to administer only the Exchange objects within their respective domain.

The goal is to allow Opco domain admins the ability to administer all AD objects within their domain, but only allow administrative rights to only the Exchange objects that are within their domain. 

Is this possible?

Thank you.

Multi Child Domain Forrest and Exchange Delegation to Administrator within Child Domain

Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.

Exchange

IT Administration is the processes and best practices for programming and development, and incorporates methodologies for managing activities and projects. Common methodologies include waterfall, prototyping, iterative and incremental development, spiral development, rapid application development, extreme programming and various types of agile methodology. The life-cycle "model" is a more general term for a category of methodologies, and a software development "process" a more specific term to refer to a specific process chosen by a specific organization.

IT Administration

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.