<div>
Forced accept.<br />
<br />
Computer101<br />
EE Admin
</div>


<div>
As an update - we experimented with Restricted groups, but felt it not appropriate as there were various machines that needed specific attention due to elevated priveleges required for certain local diretories.<br />
<br />
We ended up running a batch script as part of the startup from the GP.
</div>


As an update - we experimented with Restricted groups, but felt it not appropriate as there were various machines that needed specific attention due to elevated priveleges required for certain local diretories.

We ended up running a batch script as part of the startup from the GP.

<div>
<div class="content wysiwyg-content">
We need to add the domain admins group of a secondary domain to the local workstation administrators group.<br />
<br />
Currently we have this command line:<br />
<br />
net localgroup administrators &quot;&lt;NEW DOMAIN&gt;\domain admins&quot; /add<br />
<br />
However we would like to distribute this to all workstations via group policy. The group policy is on a seperate domain (call it OLD DOMAIN) to the NEW DOMAIN.
</div>
</div>


We need to add the domain admins group of a secondary domain to the local workstation administrators group.

Currently we have this command line:

net localgroup administrators "<NEW DOMAIN>\domain admins" /add

However we would like to distribute this to all workstations via group policy. The group policy is on a seperate domain (call it OLD DOMAIN) to the NEW DOMAIN.

Group Policy - local admin rights

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.

Security

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).

Windows Server 2003

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.