Accessing 2003 Domain Controller without being a Domain Admin

Hoping someone can help me. I have a requirement for a couple of staff to RDP or direct logon to a Windows2003 Domain Controller, but they are not members of the Domain Admins group.

Where on the server can I add them to allow local access and RDP access, with the same rights if it had a local Administrators account.

Who is Participating?
valrogConnect With a Mentor Commented:
Open the Group Policy Management Console (gpmc.msc)

Edit the "Default Domain Controllers Policy"

Computer Configuration
 Windows Settings
  Security Settings
   Local Policies
    User Rights Assignments
    --- Allow logon locally
    --- Allow logon through terminal services

Sorry it took so long, I was working on the same problem also (Test Enviroment)
Why would you give non-Admins rights to a DC?  Do you know the havoc they could cause?  

Anyhow,  I think you may need to install terminal services.
Nero_WolfeAuthor Commented:
Because, to satisfy auditors there can only be a limited amount of Domain Admins, which is myself and the backup account.  However i need the it staff to be able to login to the server at the console or via RDP.  I know it can be done, as i've had it done before - something to do with local policies - but I can't remember how to do it.

Nero_WolfeAuthor Commented:
Thanks - much appreciated.  I thought it was in Policies somewhere, but just couldn't lay my hand to the location.

Thanks again.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.