?
Solved

Is there a way to add a user to a local group in Windows with a Group Policy?

Posted on 2011-09-12
3
Medium Priority
?
276 Views
Last Modified: 2012-05-12
Or, would that require a script? Any place where I might find a sample script?
0
Comment
Question by:brownkm82
3 Comments
 
LVL 6

Accepted Solution

by:
-tjs earned 375 total points
ID: 36524676
If the group membership is something that is known and should always be the same, you could use something called "Restricted Groups".  Group Policy essentially forces a group to have the members you want (and only the members you want).
http://support.microsoft.com/kb/279301
0
 
LVL 35

Expert Comment

by:Joseph Daly
ID: 36525126
Yes this can be done by either a script using the net use command.

You could also do this by using a GPO and restricted groups mentioned above.

The way that I would reccomend doing this would be to use group policy preferences if you have a windows 7 machine that you can build the GPP on.

http://www.frickelsoft.net/blog/downloads/10%20things%20Group%20Policy%20Preferences%20does%20better.pdf

See the section for "Setting local Administrator Passwords /Administering local users and groups". This is much easier than using restricted groups in a GPO.
0
 

Author Closing Comment

by:brownkm82
ID: 36525502
That's the ticket. It even allows a policy which forces domain group within local group.

Thanks,
Ken
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?
With just a little bit of  SQL and VBA, many doors open to cool things like synchronize a list box to display data relevant to other information on a form.  If you have never written code or looked at an SQL statement before, no problem! ...  give i…

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question