• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 349
  • Last Modified:

Local Admin Group Errors

We have a server where we require a generic domain user to have access to the local admin group. The issue that we are expereincing is when we restart the server this user disappears and we have to go and re add this user or like today this disppeared without the server restart. and we had to go and re add, can anyone possibly shed some light on what this issue could be?
0
Mr_Wormald
Asked:
Mr_Wormald
  • 5
  • 2
  • 2
3 Solutions
 
klittlejohn1Commented:
How is the server setup like is it a physical or VM?  When you say disappear, can you give a little more detail on that?  It seems odd that an account would just disappear without someone removing it.

One thing you can do is create a group policy to add that user account to the local admins group and apply it to that server.  We do that now and it works great.  
0
 
OriNetworksCommented:
There may be a policy enforcing user membership. See what group policies are applied to that server using the gpresult command from a command prompt.
0
 
Mr_WormaldAuthor Commented:
klittlejohn1 there isnt much more information I can give other than it disappears. it is a physical machine not that I think that is any read pointer to the situation.....
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 
klittlejohn1Commented:
I would check to see if any GPs are being applied and start from there.  If not, try creating a GP making that user local admin and see if that works.
0
 
Mr_WormaldAuthor Commented:
What is the best way to create a GP making this occur, I looked through the local GP and couldnt find a policy that allowed me to set users to be apart of a certain group.

Thanks
0
 
OriNetworksCommented:
Like I said, I would check to make sure an existing GPO isnt already applied enforcing this at the network level.

gpresult /R would help you see what existing policies are applied. You could also try using the Group Policy Management Console which has a good summary of only settings that are applied in that policy.
0
 
Mr_WormaldAuthor Commented:
I will check this, but this wouldnt explain the user disappearing multiple times durning a day, without any server restarts ...... or would it?
0
 
Mr_WormaldAuthor Commented:
Attached are the gpresults and also the Domain Policy that gets applied, the user that we need to stay is CHOICEHOMES\GFI which I can see is under the "Log on as a batch job" heading. Where would we add this user to have this user stay as the local admin. Default-Domain-Controllers-Polic.htm gpresult (cmd)
0
 
Mr_WormaldAuthor Commented:
After further investigation I did find that there was a GPO setting the accounts in BUILTIN\Administrators, I have now created my own GPO to include those in the original list and then the ones that keep disappearing. Thanks for your help :)
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

  • 5
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now