Admincount =1 for users and groups
From looking online I see that AD objects have an attribute called “Admin Count”. The default value is for most objects. Changing the value to “1”, flags the account as protected by AdminSDHolder.
By adding a user to an administrative AD group. You change the value to “1”
We have 300 users with Admincount of 1 and 14 groups with AdminCount of 1, can anyone outline disadvantages of this and best way to remedy it?
Am i right in saying that it interferes with permissions ACL for groups with a lower administrator setting i.e. Helpdesk etc