Solved

restricted groups not working

Posted on 2010-08-23
5
747 Views
Last Modified: 2013-12-04
Hi,
Windows 2003 DC with XP computers.
We've added users that we need to give Local admin rights to XP computers.  We added them to the GPO and linked it to the OU's where the computers reside.   They're being applied to the computer configuration.
We see the GPO present in the computer configuration properties of rsop.msc, but still don't seen them applied (we don't see the users in the administrators group).    
Any suggestions?  
0
Comment
Question by:seven45
  • 2
  • 2
5 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 125 total points
ID: 33502694
Can you take a screenshot of the GPO (if you can)   Sounds like you did everything right.  Florian also has a really good entry
http://www.frickelsoft.net/blog/?p=13
Any errors in the event logs on the machines telling you that the GPO didn't apply?
Thanks
Mike
0
 
LVL 16

Assisted Solution

by:Ady Foot
Ady Foot earned 125 total points
ID: 33502700
Hi,

Sounds like you've configured this properly but just to be sure, please check through the following guide:
http://www.windowsecurity.com/articles/Using-Restricted-Groups.html

Once confirmed please let me know.  It's probably a nesting issue if the instructions above don't help.

Regards,

Ady
0
 

Author Comment

by:seven45
ID: 33641685
What port do the GPO's use?
Using rsop.msc, I do see the gpo being applied, but i dont see the group added into the Local users and groups of the Local computer.  
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 33641782
ports are listed within this document  http://support.microsoft.com/kb/832017
 
0
 

Author Closing Comment

by:seven45
ID: 33789949
Although my problem isn't completely solved, I don't have access to the client for another month---I'll test the above, and if it still presents itself as an issue, I'll create a new question.
0

Featured Post

Scale it in WD Gold

With up to ten times the workload capacity of desktop drives, WD Gold hard drives employ advanced technology to deliver among the best in reliability, capacity, power efficiency and performance.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
Resolve DNS query failed errors for Exchange
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now