Go Back   TechArena Community > Technical Support > Computer Help > Windows Security
Become a Member!
Forgot your username/password?
Register Tags Active Topics RSS Search Mark Forums Read

Sponsored Links



Granting Domain Users Local Admin Rights

Windows Security


Reply
 
Thread Tools Search this Thread
  #1  
Old 16-04-2009
Member
 
Join Date: Sep 2005
Posts: 229
Granting Domain Users Local Admin Rights

I have done this before on Windows XP and Windows Server 2003 AD network. What happens if that if a user is set up at a computer then their domain login is added to the local pc with admin rights and then the issues start if the user goes to another computer where they are not been added as a local admin for local admin rights that are required for a some applications to run. So, when I searched for an easier way to do this thing then I got 2 options:
  1. Add the Interactive Users group as to the local admin group
  2. Add the Domain Users group to the local admin group
So, can anyone tell me what is the difference between these two options and which one should I choose from?

Reply With Quote
  #2  
Old 22-04-2009
Member
 
Join Date: Nov 2005
Posts: 2,490
You can use the User Manager for Domains that lets you grant these permissions without visiting each workstation. On the server (or on a workstation with server tools loaded):
  1. Click Start, point to Programs, point to Administrative Tools (Common), and then click User Manager for Domains.
  2. On the User menu bar, click Select Domain.
  3. In the Domain box, type \\ComputerName (where ComputerName is the name of the computer), and then click OK. This starts User Manager for Domains for the computer name you specified.
  4. Double-click Administrators in the list of groups at the bottom of the User Manager for Domains dialog box.
  5. In the Local Groups Properties dialog box, click Add. In the List Names From box (these are the domains in which you can add users from), click the user (or global group) that needs administrative rights, and then click Add. The user name is displayed in the Names box. Click OK.
  6. In the Local Group Policies dialog box, click OK.
For more information, go to this link - http://support.microsoft.com/kb/231422
Reply With Quote
  #3  
Old 22-04-2009
Member
 
Join Date: Aug 2005
Posts: 822
Re: Granting Domain Users Local Admin Rights

Try to follow the below method and see if that helps:
  1. First of all you have to make a Domain account called Local Admin
  2. After that you need to add all users to this group
  3. Now you have to manually add the new "local admin" group to the administrators group on each computer.
Also you can try to use the group policies to do that, just go to Computer >> Preferences >> Control Panel >> Local Users & Groups >> Group >> Administrator and then Add Domain Name\Local Admin. Hope this helps
Reply With Quote
Reply

  TechArena Community > Technical Support > Computer Help > Windows Security
Tags: , ,



Thread Tools Search this Thread
Search this Thread:

Advanced Search


Similar Threads for: "Granting Domain Users Local Admin Rights"
Thread Thread Starter Forum Replies Last Post
adding domain users automatically to the local admin group The Shadow Active Directory 3 07-06-2011 10:57 PM
VB development without local admin rights? Bottlenecked Software Development 6 25-09-2010 09:02 PM
Granting local admin rights on domain controller Micka Active Directory 5 04-11-2008 06:08 PM
domain admin rights Billie Active Directory 4 21-05-2008 01:52 AM
local admin rights Leonard Windows Server Help 4 26-04-2008 04:55 AM


All times are GMT +5.5. The time now is 05:53 AM.