Solved

Users logging into multiple computers and local file access security.

Posted on 2004-04-12
3
269 Views
Last Modified: 2010-04-13
Windows 2000 domain XP clients. I have around 100 users that switch between computers fairly often for short periods of time. We have a 3rd party application that a) requires the user to have local administrative rights b) uses a login script to map printers.

I do not want to add 100 users to the local admin group on every pc. I thought to use a generic account but this poses a problem mapping printers and also logging into our exchange server.

Can I configure local rights through active directory? Obviously I dont want users with domain privelidges but if I can give them specific access to a folder in windows directory that would work. Does anyone have any suggestions on how to go about doing this? Thanks in advance.
0
Comment
Question by:sbrancheau
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 1

Expert Comment

by:HeathAdams
ID: 10808480
Are you using roaming profiles?  I think this would be a viable solution  

http://www.winnetmag.com/Article/ArticleID/15061/15061.html 

Shows you how to set them up.
0
 
LVL 31

Accepted Solution

by:
Gareth Gudger earned 125 total points
ID: 10809275
You can add the "Domain Users" group to the "Local Administrators" group instead of the individual users. That way it includes everyone in the domain to have local admin rights.
0
 
LVL 10

Expert Comment

by:pcbrat
ID: 10809283
why does it need local admin rights/ Is there a reg key it needs access to? If so is it a Hkey Local User or Current? If it is local you may be able to configure something

Find out from the app provider.

what you could do is create a group in AD and add those users that need that access into that group. Then create a poilcy that allows them to have admin access to that key


dawne :)
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
This article shows the steps required to install WordPress on Azure. Web Apps, Mobile Apps, API Apps, or Functions, in Azure all these run in an App Service plan. WordPress is no exception and requires an App Service Plan and Database to install
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question