Hi,
We have an RODC whic currently have the PRP policies set - allowed includes a large number of users, including domain admins and the deny password caching group is empty.
I want to set the "managedBy" property of the RODC to an AD group - the value is empty. Before I do this, I wanted to check if setting the property strips or removes any existing permissions?
Thanks