<div>
You can't give them local admin rights unless you're physically at each computer, create them an account with administrative priviledges, then delete the account when done.<br />
<br />
<br />
You can however add those users to the Domain Admins group that will give them administrative rights to the domain.
</div>


You can't give them local admin rights unless you're physically at each computer, create them an account with administrative priviledges, then delete the account when done.


You can however add those users to the Domain Admins group that will give them administrative rights to the domain.

<div>
Move all the boston computers to a new OU and create a group policy linking it to the Boston OU so that the user would be assigned local admin rights on all the boston computers.Once done.you can remove the user from group policy.<br />
<a href="http://www.windowsecurity.com/articles/Using-Restricted-Groups.html" rel="ugc">http://www.windowsecurity.com/articles/Using-Restricted-Groups.html</a>
</div>


Move all the boston computers to a new OU and create a group policy linking it to the Boston OU so that the user would be assigned local admin rights on all the boston computers.Once done.you can remove the user from group policy.
http://www.windowsecurity.com/articles/Using-Restricted-Groups.html [http://www.windowsecurity.com/articles/Using-Restricted-Groups.html]

<div>
<div class="content wysiwyg-content">
I hope someone can help me with this. &nbsp;I am located in LA and we have a office in Boston, we are using AD with a win2k domain and a win 2003 AD servers both are domains. &nbsp;I am using AD on win2k server, the boston OU is in our domain. &nbsp;What i need to do is give a certain user over there local admin rights to each machine which contians 30 machines. &nbsp;then remove them after we get done on each machine what needs to be done. &nbsp;how do i do this for their OU?
</div>
</div>


I hope someone can help me with this.  I am located in LA and we have a office in Boston, we are using AD with a win2k domain and a win 2003 AD servers both are domains.  I am using AD on win2k server, the boston OU is in our domain.  What i need to do is give a certain user over there local admin rights to each machine which contians 30 machines.  then remove them after we get done on each machine what needs to be done.  how do i do this for their OU?

should i use Group policy

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Microsoft Windows XP is the sixth release of the NT series of operating systems, and was the first to be marketed in a variety of editions: XP Home and XP Professional, designed for business and power users. The advanced features in XP Professional are generally disabled in Home Edition, but are there and can be activated. There were two 64-bit editions, an embedded edition and a tablet edition.

Windows XP

The Microsoft Server topic includes all of the legacy versions of the operating system, including the Windows NT 3.1, NT 3.5, NT 4.0 and Windows 2000 and Windows Home Server versions.