We have a group of users who we consider analysts instead of Administrators. Want to know if there is a way to grant them the ability to see (view only) what groups to have rights a directory, but not be able to modify the rights. When we grant "Access Control" to the analysts, they not only can see the groups that have access to a directory, but the analysts can also change the access (i.e. Read,Write, etc...). Would like Analyst to have "Read Only" to see what groups have the ability to access an object, but not make changes. Is this possible?
Any help would be appreciated.