Currently I have a Windows 2003 site that has setup every PC with the domain users group as local administrators. This gives all users access to the C$ and could cause problems.
Group policy cannot be implemented because a central "group" controls all policies, but local changes can be implemented.
I don't want to stop sharing it, which would be bad, so I accessed the C drive and clicked on security. I removed the everyone group, administrators group, and the users group. Added the correct domain admins and it works like a charm...except the local users can no longer double click on their C drive and access their files.
Is there any way around this situation?