Adding other users/groups to local Administrators group when joining domain?

[Vertigo]

As you're all no doubt aware, when a computer is joined to a Windows domain, the Domain Admins group is automatically added to the local Administrators group.

Is there a way I can configure additional users or groups to be added in this manner when a computer joins the domain? I have certain people to whom I wish to delegate machine admin and thus need to be local administrators but not full Domain Admins.

 

[LizardKing]

Create a security group called "machine admins" or something to that affect
then use Group policy to add that group to the local admin group on the desktops.
computer polices > polices > windows settings > local polices/security options > "restricted groups"

Then you just need to add the desired people to that group rather than manage them individually

 

[Vertigo]

Cool ta will give it a go.

 

[Hellsmk2]

Ignore.