I have some computers on the domain that, as a domain admin, I have no permissions to remote into or remotely restart. I have a group policy on those computers that allows certain people to be able to login locally, which I am part of, but I setup a policy to setup a security group to be part of the local Administrators group on the computers. I can only imagine that because I didn't include domain admins as part of the local Administrators group that I am not a local admin. Would that be true? Is there a way I can make a change to the group plicy and be able to force the Gpupdate on those computers? It appears I cannot because I don't have access. Just seems odd that a domain admin cannot force access remotey to his or her domain computers.