Advertisement

03.10.2008 at 11:53AM PDT, ID: 23229474
[x]
Attachment Details

Problems converting user accounts from user to administrator.

Asked by aquariumpro in Windows Network Security, MS Internet Security & Accel, MS Forefront

Let me begin by stating up-front that I am not an IT by choice; I run an aquarium business and am self-taught in Windows and Win Server so do not necessarily understand all the lingo, but am learning by leaps and bounds. Guess Im saying please take it easy on me and you may need to explain some terminology. Thanks for that in advance. :-)

We have one Windows Server 2003 R2 SP2 set up as a domain controller, WINS server, DNS server and Active Directory. We have nine clients running XP SP2 which are all new installations. We have no policies enforced yet for domain or user groups. The defaults are linked but not enforced.

We were using QuickBooks Enterprise 6.0, which required all QB users to be administrators in AD in order to use the software when running it in a domain/client network. You also had to be careful defining GPOs so I never enforced them, only link-enabled them. I know, thats a security nightmare and IT WAS, with some idiot users installing all kinds of nasty spyware-infested apps all the time. Drove me nuts!

This problem of having to make QB users Admin. was addressed in the latest QB Enterprise 8.0 version, so now QB users can be users. Unfortunately, that version also required us to upgrade from W2000 to XP on all clients.  All our users need to run QB.

So now after installing XP and getting it all configured, Im running into major problems trying to convert from administrators to users. Heres what Ive tried so far:

Removed administrator from each users membership and the one security group I had them all in. I set each user account to take ownership of roaming profile folders. I logged into each client as a local admin and changed the user type on each XP machine to restricted user (trying to avoid power user so my employees cant install junk like Google toolbars).

I rebooted each client and go the Local policy prohibits logging in interactively warning when trying to login.

Problem is, you cant edit the local policy in XP even when logged in as an Admin (local or domain). There is no mention of the need to change local policy on clients in everything Ive read in the many Win Server 2003 books Ive studied, so not sure if it needs to be changed anyway. Doesnt make sense as XP Pro is NT, right?

I know its a permissions or GP thing. I did try running from the cmd line:
runas /user:administrator mmc.exe, then opened up the GP Editor snap-in but User Rights Assignment is still locked.

Help! :-)Start Free Trial
[+][-]03.10.2008 at 12:15PM PDT, ID: 21089346

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 12:35PM PDT, ID: 21089573

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 12:36PM PDT, ID: 21089599

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 12:40PM PDT, ID: 21089632

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 12:53PM PDT, ID: 21089781

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 01:15PM PDT, ID: 21089958

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 01:15PM PDT, ID: 21089964

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 01:16PM PDT, ID: 21089976

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 01:20PM PDT, ID: 21090008

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 01:34PM PDT, ID: 21090127

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 01:57PM PDT, ID: 21090353

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]03.10.2008 at 02:03PM PDT, ID: 21090409

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 02:56PM PDT, ID: 21090846

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 03:08PM PDT, ID: 21090925

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.10.2008 at 04:29PM PDT, ID: 21091543

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.16.2008 at 09:07AM PDT, ID: 21137293

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.16.2008 at 09:16AM PDT, ID: 21137317

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.16.2008 at 01:08PM PDT, ID: 21138257

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.17.2008 at 03:20PM PDT, ID: 21146715

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.17.2008 at 07:07PM PDT, ID: 21147924

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.18.2008 at 10:49AM PDT, ID: 21153829

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.18.2008 at 10:57AM PDT, ID: 21153921

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.18.2008 at 12:12PM PDT, ID: 21154662

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]03.18.2008 at 01:38PM PDT, ID: 21155544

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.18.2008 at 02:26PM PDT, ID: 21156032

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.20.2008 at 07:57AM PDT, ID: 21172144

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Windows Network Security, MS Internet Security & Accel, MS Forefront
Sign Up Now!
Solution Provided By: aquariumpro
Participating Experts: 2
Solution Grade: A
 
 
[+][-]03.20.2008 at 08:13AM PDT, ID: 21172331

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.20.2008 at 10:39AM PDT, ID: 21173743

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.20.2008 at 10:44AM PDT, ID: 21173795

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]03.20.2008 at 12:06PM PDT, ID: 21174694

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.20.2008 at 07:17PM PDT, ID: 21177653

Experts Exchange has a courteous staff of administrators who help members get the most out of the website by means of administrative comments like this one.

Start your 7-day free trial to view this Administrative Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628