Active Directory MMC Access on a DC for a non Admin users with Delegation

GUILLOU Olivier 1 Reputation point
2022-11-24T11:55:51.427+00:00

Hello,

I'm actually working on trying to remove a lot of users who were in the Domain Admin Group. We had all the support equip users inside this groupe but now i removed them.
I made delegation for them on the active directory and everything works well with RSAT tools on their computers.

But we have issues when they are working remotly with RSAT, everything is really slow and we cant find or explain why.
So i give them only a remote access right on one DC for when they are on remote working.
I Follow this link to do so : https://blog.geralexgr.com/windows/allow-non-admin-users-to-connect-through-rdp-on-domain-controller

Now, they successfully connect on the DC but they just cant open the MMC like user & computer ADUC, they have a pop up to log with admin rights.
I tried to check for an answer but can't find. If Someone can help it would be really nice.

Have a good day

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Server | User experience | Other
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Anonymous
    2022-11-29T03:54:37.377+00:00

    Hello GUILLOUOlivier-5426,

    Thank you for posting in our Q&A forum.

    You can try to disable UAC on Domain Controller to see if it helps.
    265051-capture.png

    Here is a similar thread with more discussion for your references.
    https://social.technet.microsoft.com/Forums/en-US/729179f4-fb17-4c87-860f-227463364ef8/can-you-allow-mmcaduc-snapin-for-a-domain-user-on-a-domain-controller

    Hope the information above is helpful.

    Best Regards,
    Daisy Zhou

    ===============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.