ramziabk
asked on
Local domain Admin
I need to create a group policy if possible to Add a Local Admin user on all machine in my domain.
In Windows 7, Local Administrator is disabled by default. I need through group policy create a new user XYZ to be Local Admin.
Is it feasible and how?
Thanks
In Windows 7, Local Administrator is disabled by default. I need through group policy create a new user XYZ to be Local Admin.
Is it feasible and how?
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You can add users to the Local Administrators groups via "Restricted Groups" group policy settings.
You can simply create a batch file using below two command and run in the script on computer OU in your domain.
net use controller xyz@123 /add
net group administrators controller /add
For the more information on the "net use" command see below link:
http://support.microsoft.com/kb/251394
net use controller xyz@123 /add
net group administrators controller /add
For the more information on the "net use" command see below link:
http://support.microsoft.com/kb/251394
2. Locate Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Restricted Groups.
3. Right click and select Add Group. Add the group "Administrators" and click OK.
4. In Members of this group, click Add. Add the specific user. Then click Add in "This group is a member of:" and add the "Administrators" group. Click OK to apply.
5. On client computer, run the command "gpupdate /force" to refresh group policy.