VOX

Agree with Ken about being able to trust your admin groups. :)

One other possibility depending on the amount of access you want to give may be to make use of the Backup Operators group. I haven't used it myself so can't be certain about it, but I seem to remember reading ages ago that the permissions of the group are such that while members can perform backups of data, they cannot restore the data afterwards. If your concern is unauthorised users being able to gain access to secure data by running a restore job then that should do the trick for you while still allowing them to perform any required backups.

Agreed about trusting Domain Admins. Will make changes as appropriate tonight.

I'll look into the backup operators group as suggested and test as appropriate.

I trust everyone in our Domain Admins group to perform jobs as appropriate and follow up w/ them if a problem ensues. I also know I can count on the fact that the appropriate documentation will be made if/when a restore is requested and carried through. It's more of a too many hands in the cookie jar thing I suppose since some people have attempted to run restores during the day which never complete and cause the nightly backup to not run that night. I'm just trying to avoid that from happening again.

one other thought,

use ExecView.

Depending in what groups a specific user is in and what access the groups have to the BackupExec install folder, they can can have either just monitor jobs, or release/monitor jobs and respond to alerts. You cannot create jobs or media set, label tapes or do any of the other BackupAdmin tasks like Remote Admin will