Delegation Rights for Active Directory

Basically we will learn on how to give least privilege access to user accounts

1. Go to Server Manager > Active Directory Users and Computers

2. Create a New Account in the User's OU

3. Once you have create the new user

4. Right click on the domain > Delegate Control

5. Add the user that you just create or want to give access

6. Give the following access

Confirming the Delegation Rights for that user

1. Go back to the Windows 10 machine

2. Switch user and login as the new user that you just created