I am in an envrionment of 200+ PC’s, 8 Novell Servers, and 12 Window servers,
We have a single AD Domain Controller, all other servers are either member alone, or stand servers.
We do not want the end user PC’s fully joined to the Domain, however, we want the domain to control access rights to all servers for centralised username, password, access control administration of the servers.
Is there a way, to get the end user PC’s to still belong to a workgroup, but yet have access to member servers based on group membership in the domain.