There are two local user accounts on an end users computers which must be used to start a couple of services on the users machine.
I can't add them to the local security policy to allow them to "log in as a aservice" because the option is greyed out due to a domain based policy.
Is there a way to create a domain based policy, and add the LOCAL USER accounts to this policy so that the domain pushes out these settings?
The services will not start without these users having the log in as a service right.
I was able to work around this and found a way to add them locally but they get wiped out each time the domain policy gets applied.