I need to grant an user some admin rights, so he can enter his credentials when someone is prompted to install a software (and just that), he is no admin, I don't want him to have too much access.
My domain controller runs on Windows server 2008 R2 and the computers on Windows 7
I tried to make him a power user, but apparently power user are just basic user now... Or maybe I missed something.
Is making him a local admin on some computers a good idea? Is there a better (another) way to do that?
Also, I read about AppLocker, is it a good way to let regular users install some software?