OK, I've seen the NetGroupAdd API, but how do I give a group it's permissions? In UserManager, one can click on the User Rights Policy (Policies->User Rights). This will show a list of rights that one can give to a group. How does one retrieve these rights? The GROUP_INFO_2 structure doesn't seem to allow setting these rights. How does one retrieve the rights, and how does one give a group these rights? I would like to be able to access all of those rights, (including the advanced rights). Thank you very much for any information that you have.