Hi All,
Domain Admin can manage all computer that are in active directory environment, include the computer is belong to executive user. If they want, Domain Admin can access all file on executive user's computer. Other than, domain admin can access executive user's files on file server by taking ownership.
How to protect domain admin can do that?
Or could you share me best practice to implement permission for executive user on active directory environment?
Thanks,
Nana Sutisna