Domain Admin Members have limited Domain admin permissions

I recently inherited a network.  My account is a member of Domain Admins and Domain Admins are a member of the local administrator's group on each machine.  However, our permissions are limited.  For example, I tried to launch Device Manager as myself (a member of Domain Admins) on a local and was told I do not have the privilige.  I had to log in as the Domain Administrator Account.  There are three Group Policies on the network that I haven't been able to go through yet, but I was hoping you might point me in the right direction.
scubaed69Asked:
Who is Participating?
 
Jay_Jay70Connect With a Mentor Commented:
just move your user out of the range of any policy and try again, quick way to see if its a policy or not
0
 
Toni UranjekConsultant/TrainerCommented:
Use GPMC or gpresult to find out which policies are in effect. There might be domain wide policy which prohibits  access to Control Panel. If you have only three policies defined you won't have to much work to review settings.

You are looking for User Configuration policy in Control Panel.
0
 
scubaed69Author Commented:
I couldn't find the policy blocking me.  Everything I checked said not configured.  So, I created a new OU, blocked inheritance to it and placed the neccesary accounts in the OU. This seems to have solved the issue.
0
 
Jay_Jay70Commented:
it was most probably the default domain policy that has some settings in it
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.