Solved

restricted groups not working

Posted on 2010-08-23
5
749 Views
Last Modified: 2013-12-04
Hi,
Windows 2003 DC with XP computers.
We've added users that we need to give Local admin rights to XP computers.  We added them to the GPO and linked it to the OU's where the computers reside.   They're being applied to the computer configuration.
We see the GPO present in the computer configuration properties of rsop.msc, but still don't seen them applied (we don't see the users in the administrators group).    
Any suggestions?  
0
Comment
Question by:seven45
  • 2
  • 2
5 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 125 total points
ID: 33502694
Can you take a screenshot of the GPO (if you can)   Sounds like you did everything right.  Florian also has a really good entry
http://www.frickelsoft.net/blog/?p=13
Any errors in the event logs on the machines telling you that the GPO didn't apply?
Thanks
Mike
0
 
LVL 16

Assisted Solution

by:Ady Foot
Ady Foot earned 125 total points
ID: 33502700
Hi,

Sounds like you've configured this properly but just to be sure, please check through the following guide:
http://www.windowsecurity.com/articles/Using-Restricted-Groups.html

Once confirmed please let me know.  It's probably a nesting issue if the instructions above don't help.

Regards,

Ady
0
 

Author Comment

by:seven45
ID: 33641685
What port do the GPO's use?
Using rsop.msc, I do see the gpo being applied, but i dont see the group added into the Local users and groups of the Local computer.  
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 33641782
ports are listed within this document  http://support.microsoft.com/kb/832017
 
0
 

Author Closing Comment

by:seven45
ID: 33789949
Although my problem isn't completely solved, I don't have access to the client for another month---I'll test the above, and if it still presents itself as an issue, I'll create a new question.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

832 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question