troubleshooting Question

Restricted Groups

Avatar of mmudry
mmudry asked on
Windows XPWindows 7
5 Comments1 Solution481 ViewsLast Modified:
Currently we have a group policy applied to all our desktop OU's that adds the following groups to the destops restricted groups:

DOMAIN\Desktop Support
DOMAIN\Domain Admins  

BUILTIN\Power Users
NT AUTHORITY\Authenticated Users  

BUILTIN\Remote Desktop Users
DOMAIN\Domain Users  

The issue is we want to give the desktop support team the ability to add a single user to the BUILTIN\Administrators group if needed without Group Policy removing it.  Please let me know if there is a way to accomplish this.  Thanks in advance!

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 5 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 5 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros