Quick AD help

Django x2

Django x2

Django x2

Soldato
Joined
28 Sep 2008
Posts
14,187
Location
Britain
I have a user in AD that is a "client push" user. I need this user to be added to the local admins of each client pc. Can this be pushed through AD?
 
I've not tried this before but you could use group policy preference's and setup a local group update policy in the computer configuration, add the administrators group and add the user you want to be in that group.

Might work though like i say, never tried it myself.

EDIT: never mind, just read the link above, same thing.
 
Ahh, cool. So in the GPO preference of say the (clients) gpo, I add the user in the machine or user preference through the "control panel, users/groups" ?
 
Find or create a policy at the root of the OU of the computers you want them added to, go to computer configuration > preferences > control panel settings > local users and groups

The right click > new > local group and select that action as "update" and in group name select "Administrators (Built in)" and just add the user(s) to the members section at the bottom.

Should do the trick :) ....hopefully :p
 
Last edited:
Lucero said:
I have a user in AD that is a "client push" user. I need this user to be added to the local admins of each client pc. Can this be pushed through AD?
Click to expand...

Yes as many people have said, you may want to take this oppertunity to review the local permissions you are setting on PC's as creating a group policy each time you want to change it is messy.
 
mrbios said:
Find or create a policy at the root of the OU of the computers you want them added to, go to computer configuration > preferences > control panel settings > local users and groups

The right click > new > local group and select that action as "update" and in group name select "Administrators (Built in)" and just add the user(s) to the members section at the bottom.

Should do the trick :) ....hopefully :p
Click to expand...

Ahh, cool, thanks. I was "Adding". Oddly though, I don't have "Administrators (Built in)" when I look in AD groups. Will I have to create that first in AD?
 
Last edited:
Lucero said:
Ahh, cool, thanks. I was "Adding". Oddly though, I don't have "Administrators (Built in)" when I look in AD groups. Will I have to create that first in AD?
Click to expand...

When you're in the window that pops up after selecting a new local group it should appear in the drop down list on the second option, just under where you select it to be a "new, update, delete" etc policy.
 
You must log in or register to reply here.
Back
Top Bottom