Hi IT Experts,
My objective is to delegate IT support team to have full local admin privilege but same time should be denied accessing to all the servers either directly or remotely.
To accomplish this task, I created one security group and deploy the policy, while testing found the members of this security group has admin privilege to all the PC's but same time they can also have remote access to all the servers but not to domain,
My question is, how to restrict completely accessing to any servers via remotely to the same security group.
TIA