I'm looking for an automated way to open up rights on all of our workstations to allow installing of programs. The only thing I'd like to block is the installation of drivers, but it is not that important.
I still need them to have no such rights if they log into a server.
I've messed around with the GPO, but cannot find a series of settings that'll let all programs install. (MS Project, Palm Software, etc. as examples.)
Any help out there?