Removing group privilage from user after domain change
Posted on 2004-04-08
I just recently switched a user from one domain (which is being phased out) to a new domain. The old domain had poor control on the users and all users were created with "Domain Admins" as part of their assigned groups. I would like to remove that assigned group but when I do the user is missing settings (recently opened programs, applications settings, etc). I suspect this has something to do with the ntuser.dat. How can I remove the assigned group after switching to a new domain controller?
The method used to transfer the users: create the user on the new DC, copied the files over using Explorer and reset the permissions on the files to user and system. File permissions don't seem to be the problem as it appears to be the groups assigned to the user.