troubleshooting Question

Removing interactive user from the local administrators group

Avatar of Simon336697
Simon336697Flag for Australia asked on
Windows 7
5 Comments1 Solution1676 ViewsLast Modified:
Hi guys,
Hope you are all well and can assist.
We currently have a  scenario in our environment where ALL Windows XP users are members of the local administrators group by way of adding the INTERACTIVE group to the local administrators group.
The reason we did this was for various reasons including allowing tasks and processes to run under the context of the currently logged on user.
However, what we have discovered, is that these same users can remote desktop to ALL machines in our environment since they are part of this interactive group in the local admins.

We are moving to Windows 7.
We wish to stop users being able to remote desktop to other peoples' systems, but at the same time, allow them administrator access on their own machine.

Any help on this would be greatly appreciated.
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 5 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 5 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros