We have a need to seperate security administration from server administration.
In the current version, admin rights are required to maintain users - we need the ability to prevent the team that manages authorization from having the rights to execute jobs.