vneedhelp
asked on
Creating local users for a group of computers using GPO
Hi,
I have windows 2008 DC and I have around 100 clients connected to DC. In that I want to create a local user called 'serviceaccount' in 50 systems and they are under one OU called "roaming"
I tried to do the same using http://blog.korteksolutions.com/how-to-create-local-accounts-via-group-policy/
http://www.techrepublic.com/blog/datacenter/deploy-local-accounts-via-group-policy/2880
But it did not worked..It is not showing the accounts in local systems. I tried with windowx XP SP2 client
what might be the cause.
thnaks
I have windows 2008 DC and I have around 100 clients connected to DC. In that I want to create a local user called 'serviceaccount' in 50 systems and they are under one OU called "roaming"
I tried to do the same using http://blog.korteksolutions.com/how-to-create-local-accounts-via-group-policy/
http://www.techrepublic.com/blog/datacenter/deploy-local-accounts-via-group-policy/2880
But it did not worked..It is not showing the accounts in local systems. I tried with windowx XP SP2 client
what might be the cause.
thnaks
You should also upgrade those systems to SP3 anyway so you can get the security updates since July 13, 2010. You can't get any new XP related updates until you go to SP3.
http://www.daniweb.com/hardware-and-software/microsoft-windows/windows-nt-2000-xp/news/287954
http://www.daniweb.com/hardware-and-software/microsoft-windows/windows-nt-2000-xp/news/287954
You should be able to do this as is with restricted Groups policy
see here for more information
http://www.windowsecurity.com/articles/using-restricted-groups.html
see here for more information
http://www.windowsecurity.com/articles/using-restricted-groups.html
Another way to do that without having to install the GPPCSE would be a computer startup script, for example as batch:
chakko,
Restricted Groups policies can't create users, neither local nor in the domain; they only control membership in/of existing groups and existing users.
@echo off
net user "Serviceaccount" "NotSoSecretPassword" /add
But that's a security risk, and it's something that you have to know is happening in this script, unlike the Preferences where you can directly see what's going on.chakko,
Restricted Groups policies can't create users, neither local nor in the domain; they only control membership in/of existing groups and existing users.
ASKER
I updated to XP SP3 and also tried in windows 7, but in both are not working..
I did the same step what is mentioned in the above article
I did the same step what is mentioned in the above article
Not sure why obda's suggestion didnt work. Should be a very simple way to do it....
you might try this to see if there is any error message
net user "Serviceaccount" "NotSoSecretPassword" /add > c:\output.txt
then check c:\output.txt for any message
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
www.kixtart.org for download and information
Information about new Group Policy preferences in Windows Server 2008
http://support.microsoft.com/kb/943729