I have a problem with the following:
Laptops have one local user (meber of the local administrators group) other than local administrator
Used restricted groups to add 1 domain user and 1 domain group to the local administrators group on these laptops by
then adding for example
now what happens is that the local user is removed from the local administrators group. Even if i put this user back into the local administrators group it is again removed so reducing the users right over this laptop. This is happening domain wide on 9 laptops that i wish this policy to occur.
I then removed the restricted policy but the same result still exists the local user is constantly removed from the local administrators group.
What action should i take to correct this either manually on each machine or by policy
Your help would be appreciated thanks in advance