We have recently received a request from the local IT team of one of our business units to have the ability to flush the DNS cache on the DC in their site only. This business operates from a single site with a single domain controller, part of our North America domain.
We would obviously prefer not to give them DA access, or full access to DNS - or for that matter any additional privileges other than being able to clear the cache on this one DC itself. I can't see a way of delegating this single action to them, and my usual google-fu (bing-fu?!) has let me down on this occasion.
Is it possible to delegate permissions to clear the DNS cache on a domain controller only? Or will they need to settle for raising helpdesk calls every time the need to flush DNS?
Thanks in advance!