Good afternoon for all.
We are implementing CA ControlMinder 12.8, and our client show us the case:
The DBAdmins need to stay in the Administrators group. Since they are in this group, they are able to create so users, shut down or reboot the server, install / uninstall programs, etc.
The Security Group wants to restrict these actions for the DBAdmins without remove them from the local Administrators Group.
¿Is this possible? We already know how to protect files, services, etc. . but these actions are more complex.
Thanks a lot for the help.