<div>
Well I guess it is targeting by the machine they log into. In other words I'm not specifying up front that user A only has local admin rights to computer A. I'm wanting to make it so that if they only log in to computer A they get local admin rights but don't have local admin rights on computer B unless they have logged on to computer B. Basically I need all domain users to have local admin rights to their machines but I can't make all domain users local admins on all machines.
</div>


<div>
Thanks for the help. I thought this would be the case but wasn't sure.
</div>


<div>
<div class="content wysiwyg-content">
I know you can control local group membership through group policy with restricted groups. I need to make individual domain users members of the local administrators group when they log on to a machine but cannot add all domain users to the local admin group on all desktops. Is there a way to do this with group policy such as with a variable like domain\$UserID$ or some such?
</div>
</div>


I know you can control local group membership through group policy with restricted groups. I need to make individual domain users members of the local administrators group when they log on to a machine but cannot add all domain users to the local admin group on all desktops. Is there a way to do this with group policy such as with a variable like domain\$UserID$ or some such?

Can I add individual users to local admin group through restricted groups?

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).

Windows Server 2003

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Microsoft Windows XP is the sixth release of the NT series of operating systems, and was the first to be marketed in a variety of editions: XP Home and XP Professional, designed for business and power users. The advanced features in XP Professional are generally disabled in Home Edition, but are there and can be activated. There were two 64-bit editions, an embedded edition and a tablet edition.