Active Directory: What does 'Restricted Groups' mean?
Posted on 2004-08-24
What does 'Restricted Groups' mean and when would it be used? I haven't been able to get a full understanding of what 'Restricted Groups' is.
The scenario that I have is I want to add a user to their local admin group. This user should only be a local admin on their PC and any PC that has a specific application on it. That application requires that the user be in the local admin group. I have a couple of users in different OUs that need to be in the local admin group of their PC too - for the same reason.
Currently, I've gone to the individuals PCs and manually added them into the local admin group. The problem is if they go to another PC with the application on it and they are not in that PC's local admin group, the application will not work.
What's the best approach for handling the above scenario? I've posted another related question in this forum, but now I'm inquiring in re:'Restricted Groups'.