![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 89%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
539 questions
Hi, @Amnon Feiner
Thank you for posting in Microsoft Q&A forum.
You may follow this steps:
- Go to the Administration workspace.
- Expand Security, and then select the Administrative Users node.
- Add the AD security group as an administrative user.
- Add the security roles.
- Choose Only the instances of objects that are assigned to the specified security scopes or collections.
- Remove collections All Systems and All Users and User Groups.
- Add the single user collection you want to manage and click OK.
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Add comment". After the way you tag questions on Q&A is updated, for any "Microsoft Configuration Manager" related problem, you can tag it with "Microsoft Intune", and then "Microsoft Configuration Manager" as the child tag.