<div>
It will need a little legwork or some GP modifications...<br />
<br />
Create a new group called &quot;helpdesk&quot; (or whatever). <br />
Add the users to this new group.<br />
Add the group to the local admin group on each of the workstations and servers. You can use GP to do this - otherwise you will have to visit each machine in turn.<br />
You will have to do some more complex things with rights for the domain controllers - as they don't have a local admin group. <br />
<br />
Simon.
</div>


It will need a little legwork or some GP modifications...

Create a new group called "helpdesk" (or whatever).
Add the users to this new group.
Add the group to the local admin group on each of the workstations and servers. You can use GP to do this - otherwise you will have to visit each machine in turn.
You will have to do some more complex things with rights for the domain controllers - as they don't have a local admin group.

Simon.

<div>
Just add them as a normal user. and go into the security settings of the local server..and go to the secuirty settings. find right to log on locally and add that user in. also you can use delegation on the server and delegate certain tasks to that user. that would probably be the easiest way. go open active directory user and computers. right click a OU and choose delegation...follow the wizard.
</div>


Just add them as a normal user. and go into the security settings of the local server..and go to the secuirty settings. find right to log on locally and add that user in. also you can use delegation on the server and delegate certain tasks to that user. that would probably be the easiest way. go open active directory user and computers. right click a OU and choose delegation...follow the wizard.

<div>
<div class="content wysiwyg-content">
We removed the service desk personnel from the Domain Admins group. They no longer have admin rights on the servers. What is the easiest way I can give them these rights back without making them Domain Admins<br />
<br />

</div>
</div>


We removed the service desk personnel from the Domain Admins group. They no longer have admin rights on the servers. What is the easiest way I can give them these rights back without making them Domain Admins



Admin rights needed for desktop personnel

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).