I want to add helpdesk group with one help desk member to a set of local admin group for some station on the domain. (2008 AD but 2003 domain func level and stations are xp win7 x32 and x64 on the win7. )
computer config - restricted groups. applying to comp ou
user config - gpo with local users and groups gpp. applying to user
Delegation - on the ou the helpdesk group is part of along with the computers? this one i'm not sure about.
Looking for best insights and specifics on computer vs user config being where to setup the gpo/gpp/delegation on.