[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 569
  • Last Modified:

Configure restricted Group with GPO

Hello i need help with my GPO SETTING in my enterprise (single forest) i have techninician people who when they join a computer to the domain they put it in the Computer container and give the users Local Administration rights on the computer. so to avoid that i created an OU called Stock and now i want to design a GPO so that these TECH GUYS WHO BELONG TO particularSecurity group won't be able to put the users as Local Administrator of their computer when it's inside the STOCK OU. I don't want them to be able to do any thing to the computer once the Computer is in that OU
I know i can use restricted Group but i'm confuse about the Group and member Of interface

I need help on my GPO settings, Delegations etc ....
Thank you
0
LI20579
Asked:
LI20579
1 Solution
 
KenMcFCommented:
Take a look at this post, i think this is one of the better posts about restriced groups. It sounds like you want to force the members of the local admin group so you would add all the groups and users into "Members of this Group"

http://www.frickelsoft.net/blog/?p=13
0
 
LI20579Author Commented:
Good enought
0

Featured Post

Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now