Active Directory MMC Access on a DC for a non Admin users with Delegation

Question

Hello,

I'm actually working on trying to remove a lot of users who were in the Domain Admin Group. We had all the support equip users inside this groupe but now i removed them.
I made delegation for them on the active directory and everything works well with RSAT tools on their computers.

But we have issues when they are working remotly with RSAT, everything is really slow and we cant find or explain why.
So i give them only a remote access right on one DC for when they are on remote working.
I Follow this link to do so : https://blog.geralexgr.com/windows/allow-non-admin-users-to-connect-through-rdp-on-domain-controller

Now, they successfully connect on the DC but they just cant open the MMC like user & computer ADUC, they have a pop up to log with admin rights.
I tried to check for an answer but can't find. If Someone can help it would be really nice.

Have a good day

Answer 1

Hello GUILLOUOlivier-5426,

Thank you for posting in our Q&A forum.

You can try to disable UAC on Domain Controller to see if it helps.

Here is a similar thread with more discussion for your references.
https://social.technet.microsoft.com/Forums/en-US/729179f4-fb17-4c87-860f-227463364ef8/can-you-allow-mmcaduc-snapin-for-a-domain-user-on-a-domain-controller

Hope the information above is helpful.

Best Regards,
Daisy Zhou

===============================================

If the Answer is helpful, please click "Accept Answer" and upvote it.