stalbansschool
asked on
Assigning a User as a local administrator to an OU using GPO
I work in a school and would like to assign one of the teachers local administrator permissions on a goup of computers.
How in group policy can I create a policy that will grant this user local administrator permissions on one particular OU?
Thanks
How in group policy can I create a policy that will grant this user local administrator permissions on one particular OU?
Thanks
ASKER
Does that not just give permissions to do stuff within Active Directory? e.g. change password/modify members etc? I want to allow the user LOCAL administrator permissions on the PC's.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks guys, exactly what I was after
Hi
Create a script to add that particular user to local admins and add that script into the logon script on the OU in which those computers are conatined. I will try to find a script. If its just a buch of computers why not logon as local administartor and add this user to local admins.
Cheers
Create a script to add that particular user to local admins and add that script into the logon script on the OU in which those computers are conatined. I will try to find a script. If its just a buch of computers why not logon as local administartor and add this user to local admins.
Cheers
The way we give administration capabilities to an OU is called delegation of control . Right click the OU select delegate control-> follow wizard->add the user or group-> and assign the permissions which you want to delegate. this will give permission only on that container (OU)
Hope this helps