Solved

restricted groups not working

Posted on 2010-08-23
5
746 Views
Last Modified: 2013-12-04
Hi,
Windows 2003 DC with XP computers.
We've added users that we need to give Local admin rights to XP computers.  We added them to the GPO and linked it to the OU's where the computers reside.   They're being applied to the computer configuration.
We see the GPO present in the computer configuration properties of rsop.msc, but still don't seen them applied (we don't see the users in the administrators group).    
Any suggestions?  
0
Comment
Question by:seven45
  • 2
  • 2
5 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 125 total points
Comment Utility
Can you take a screenshot of the GPO (if you can)   Sounds like you did everything right.  Florian also has a really good entry
http://www.frickelsoft.net/blog/?p=13
Any errors in the event logs on the machines telling you that the GPO didn't apply?
Thanks
Mike
0
 
LVL 16

Assisted Solution

by:Ady Foot
Ady Foot earned 125 total points
Comment Utility
Hi,

Sounds like you've configured this properly but just to be sure, please check through the following guide:
http://www.windowsecurity.com/articles/Using-Restricted-Groups.html

Once confirmed please let me know.  It's probably a nesting issue if the instructions above don't help.

Regards,

Ady
0
 

Author Comment

by:seven45
Comment Utility
What port do the GPO's use?
Using rsop.msc, I do see the gpo being applied, but i dont see the group added into the Local users and groups of the Local computer.  
0
 
LVL 57

Expert Comment

by:Mike Kline
Comment Utility
ports are listed within this document  http://support.microsoft.com/kb/832017
 
0
 

Author Closing Comment

by:seven45
Comment Utility
Although my problem isn't completely solved, I don't have access to the client for another month---I'll test the above, and if it still presents itself as an issue, I'll create a new question.
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

In a recent article here at Experts Exchange (http://www.experts-exchange.com/articles/18880/PaperPort-14-in-Windows-10-A-First-Look.html), I discussed my nine-month sandbox testing of the Windows 10 Technical Preview, specifically with respect to r…
Users of Windows 10 Professional can disable automatic reboots using the policy editor. This tool is not included in the Windows home edition. But don't worry! Follow the instructions below to install (a Win7) policy editor on your Windows 10 Home e…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now