G
Guest
My company just merged IT departments and implemented a hierarchical scheme where I'm sharing the network admin position with 2 other people. All three of us are members of the administrators, and domain admin groups. There are two other users who are assitant network admins. We don't want these two users to have the same rights as the three of us yet we don't want to restrict them to the point that they can't function effectively. We made the 2 users members of the Server Operators and Account Operators group. Will this be enough rights? Should we give the 2 users the log on locally rights to the DC? Is there any additional rights or group memberships that should be given to them? We have only one Windows 2000 Domain with 2 Domain Controllers and 95% Win2k and Win XP W/S. Any help will be greatly appreciated. Thanks in advance, Vick279