Hi, I have a question here.
first I’m running domino 8.5.3 on AIX 6.1.
I need to give access to Service Desk staff to modify groups without being able to edit some restricted groups (groups I use to restrict its members from sending external mail).
Noting that I don’t want them to have access to server configurations in names.nsf.
Subject: This is a basic function of the NAB
Set the group owner
Subject: Didn’t know this
Thanks for the feedback, didn’t know that the group owner will override the ACL on names.nsf if explicitly specified that the user can’t edit groups.
I will give it a test soon and if successful, I will go for it although I have more than 650 groups 
Subject: Not working,
I have tried it today, the user got an error saying that he’s not authorized to perform this operation.
My current setup limits the access that service desk staff has on names.nsf (using effective access option) by allowing them to edit specific fields of the group document but not the members field.
I want them to have access to most of the groups so that they can add/remove users but without being able to do the same for some specific groups that are used mainly as a deny access groups.