Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Remote editing user accounts

Posted on 2010-11-08
12
Medium Priority
?
531 Views
Last Modified: 2012-08-13
AD domain Windows 2003 R2
Clients : Domain-connected Clients Windows XP fully pathed

Is it possible to remotely edit the user-accounts on the Clients. NOT the local user-accounts, but User-accounts created on the Clients at:
Start -> Control Panel -> User Accounts , where it is possible to define AD-domain Accounts ?
0
Comment
Question by:olefisk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
  • 3
12 Comments
 
LVL 7

Expert Comment

by:rogerard
ID: 34087794
Download and install the windows server 2003 support tools.  There is a tool included, active directory users and computers, that will allow you to edit everything for Active Directory.  To only modify the local users and groups on a remote computer, use the computer management interface and connect to the desired computer.
0
 

Author Comment

by:olefisk
ID: 34088026
Hi rogerard

Thanks for the prompt answer.
Surely I'm using Active Directory users and computers.
But managing local users and groups via the Management Console does only show users created as local client-accounts, not accounts created on the CLient as a Domain-Account.
The Issue is: When a specific domain-user logs on a specific domain-attached Workstation, the User shall have specific rights, t.ex Super User or Remote Desktop User.
Please see attached file which shows the User-Accounts on Workstation, where "V1a-988" is Workstation Name, "Titan" is AD-domain, and "des" is Domain-user
User-Accounts-on-CLient.jpg
0
 
LVL 66

Expert Comment

by:johnb6767
ID: 34088061
Start>run>compmgmt.msc

Rt Click Computer Management (Local), and connect to another computer.

Enter the workstation name, and you know have the Remote "Local Users and Groups".... Should be good for most tasks....

0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
LVL 66

Expert Comment

by:johnb6767
ID: 34088066
From command line....

"C:\WINDOWS\system32\mmc.exe" /s /computer="COMPUTERNAME" C:\WINDOWS\system32\lusrmgr.msc
0
 
LVL 66

Expert Comment

by:johnb6767
ID: 34088076
Or via PSExec...

PSExec \\COMPUTERNAME cmd.exe

Then you can access all your net.exe commands as if you were sitting in front of the box.......

PsExec
http://technet.microsoft.com/en-us/sysinternals/bb897553.aspx
0
 

Author Comment

by:olefisk
ID: 34088359
Hi johnb6767

Thanks for Your Prompt Answers, but Your suggestions only shows the local users ......., not the locally created AD-Domain-users.
Thanks for the Advice concerning PStools, PSExec works fine, but I can't figure out the command showing all the User-Accounts which is shown under Control Panel -> User Accounts.
0
 
LVL 7

Expert Comment

by:rogerard
ID: 34088418
From the command prompt type net users to get a list of accounts.
0
 

Author Comment

by:olefisk
ID: 34088488
Hi again rogerard

Sorry but it still only shows the Local users, the ones which not logon to the AD-domain
0
 
LVL 7

Accepted Solution

by:
rogerard earned 1000 total points
ID: 34089547
Ok.  This one took me a bit to track down, but I think I may have finally prevailed!  :)  So here's the pickle....  The user that you're seeing when you are looking at the basic User Accounts window on a Vista or Windows 7 box does not display the same information that is in the advanced Users and Computers manager.  The so-called local Domain IDs aren't actually ID's created on the remote box,  but instead are Domain IDs that have been added to the local groups.  When you manage the remote computer and go look at the local groups, you will see listed there the users you're looking for.

If you would like to do this through a command prompt, using the pstools and psexec, if you run the command, net localgroup <group name>, you 'll get the users of the group name.  You can then pipe the results into a text file.  Good luck!
0
 
LVL 66

Assisted Solution

by:johnb6767
johnb6767 earned 1000 total points
ID: 34093109
Thats why I wasnt understanding. An AD User is not a local user but you will see an AD user in a Local Group. Any of the methods will do this above.....

"Sorry but it still only shows the Local users, the ones which not logon to the AD-domain"

Unless the Deny Logon Locall Right is populated with certain Domain Users/Groups, then ANY Domain User can logon to the PC. The reason you add them to the Local Groups is because you map thier AD account to local groups for permissions on the local box.....

0
 

Author Comment

by:olefisk
ID: 34106234
Hi rogerard and jonhb6767

Sorry for the delayed reply.
Thanks for Your efforts.

Seems to work fine with the net localgroup <group name>, but is heavy stuff to use on 100 workstations.....
Have tested  the possibility to add and delete users in the local groups, and it works !!
Somebody must have made a GUI-application/interface to handle this, I guess I'm not the only one, who puts domain-users into the local groups.
0
 

Author Comment

by:olefisk
ID: 34278199
have found an amazing tool, that handles the local usergroups:
Hyena from systemtools.com.
Works like a charm !!!!!!!
0

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

cPanel is a Unix based web hosting control panel that provides a graphical interface and automation tools designed to simplify the process of hosting a web site. cPanel utilizes a 3 tier structure that provides functionality for administrators, rese…
It is only natural that we all want our PCs to be in good working order, improved system performance, so that is exactly how programs are advertised to entice. They say things like:            •      PC crashes? Get registry cleaner to repair it!    …
This course is ideal for IT System Administrators working with VMware vSphere and its associated products in their company infrastructure. This course teaches you how to install and maintain this virtualization technology to store data, prevent vuln…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question