HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Legacy
- >
- Windows Server 2003
- >
- Re: User's right in Local Machine
Windows Server 2003
1833825
Members
1976
Online
110063
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-11-2006 11:23 PM
12-11-2006 11:23 PM
Hi,
In a laptop that is running WinXP, I've checked through the Local Administrators Group and do not see any user or user group assigned to it. But when a user login to the laptop, they are able to install program. So I would like to check how can this be possible? Is it done via some group policy pushed down from the DC? I'm trying to restrict the user from installing anything on their machine. Please advice.
Thank you
Danny
In a laptop that is running WinXP, I've checked through the Local Administrators Group and do not see any user or user group assigned to it. But when a user login to the laptop, they are able to install program. So I would like to check how can this be possible? Is it done via some group policy pushed down from the DC? I'm trying to restrict the user from installing anything on their machine. Please advice.
Thank you
Danny
Solved! Go to Solution.
3 REPLIES 3
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-12-2006 08:55 PM
12-12-2006 08:55 PM
Solution
hi danny,
If you have that laptop logged in the domain, then that user that is logging in, is in the Active Directory not in the local computer. And that account can be many things, like an administrator, a domain administrator, etc.
And also, the account that are on the AD don't appear on the local computers. You can still use the local computer accounts to log on the computers, but in this case you can't log on to the domain, and probably won't get access to the recourses that you need.
So, first thing you should check is if the user account that is being used in that computer, is in the AD and with what privileges.
regads,
hugo
If you have that laptop logged in the domain, then that user that is logging in, is in the Active Directory not in the local computer. And that account can be many things, like an administrator, a domain administrator, etc.
And also, the account that are on the AD don't appear on the local computers. You can still use the local computer accounts to log on the computers, but in this case you can't log on to the domain, and probably won't get access to the recourses that you need.
So, first thing you should check is if the user account that is being used in that computer, is in the AD and with what privileges.
regads,
hugo
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-13-2006 02:14 AM
12-13-2006 02:14 AM
Re: User's right in Local Machine
Hi Danny,
One thing I find rather strange. If the laptop is joined to the domain the domain admins group is automaticly added to the local admins of that laptop.
If the laptop is added to the domain, something is not default if the group is empty, I can not thing of an GP that removes the domain admins from the local admins.
But you can add a domain group to the local group "Power users" and "users" in useraccount in the control panel, I also think that can be done with GP,.
Regards, Ronald
One thing I find rather strange. If the laptop is joined to the domain the domain admins group is automaticly added to the local admins of that laptop.
If the laptop is added to the domain, something is not default if the group is empty, I can not thing of an GP that removes the domain admins from the local admins.
But you can add a domain group to the local group "Power users" and "users" in useraccount in the control panel, I also think that can be done with GP,.
Regards, Ronald
The logic of Microsoft: "Press START to shut down the pc"
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-20-2006 01:53 AM
12-20-2006 01:53 AM
Re: User's right in Local Machine
Hi Everyone,
Thank you for your help. I've found that this is set in the group policy that is pushed down to the user.
thank you very much
br
danny
Thank you for your help. I've found that this is set in the group policy that is pushed down to the user.
thank you very much
br
danny
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP