RODC: Administrative Permisions Available for Delegation
The following is a list of permissions which are supported or not supported for delegation to an RODC delegated administrator. Supported: Active Directory Users and Computers Domain Controller Service Kerberos Key Distribution Center Active Directory Sites and Services Not Supported: Global Catalog Bridgehead server PDC emulator RID Master Jeff LoucksAvailable Technology Subscribe in a reader