I'm very new to AD. What I want to do is create a temporary local administrator account for a group of 5 computers that I can later rescind . These would all have the same username and password. The reason being is that our school has a vendor coming to set up 5 Smartboards and the associated software on 5 dedicated laptops. I want this person to have the rights to install the software and make sure everything works correctly. I then want to delete this local administrator account when the job is done.
I know I can set up a temporary admin account on each computer but I am learning about the power of AD and would like to do the job once and have it affect those computers.
I am going to do the 1st step and set up a separate OU for these 5 computers. I was wondering if I could write a group policy that creates a local admin account on these computers with the same name and password? As mentioned earlier, I am just learning about servers, AD, and GPO.
I also intend to leave this OU in place for future updates of software for these dedicated computers. I appreciate any assistance.