I am working with Server 2012 Active Directory.
I am going to be giving a non-admin domain account local admin privileges to a specific computer. I however do not want this admin to be able to tamper/change anything on other user accounts that reside on that local machine. Is there a way I can restrict this user so that they can only have admin privileges to make changes on only their own account?