G
Guest
Basically I need to accomplish two things
1. I need to have a group (in addition to the domain admins group) added to the local administrators group on workstations when added to the domain
2. I also need a way to push that additional group down to computers already in the domain without blowing away any specific user accounts already in the local administrators group on the desktops
If I add the groups I need to the restricted groups listing in GP I end up blowing away any users who have domain accounts that are local administrators
Do I need to do #2 through a script? If so does anyone have any suggestions for setting it up
Ideas? I have dug through the KB for ages on this...
-JW
(e-mail address removed)
1. I need to have a group (in addition to the domain admins group) added to the local administrators group on workstations when added to the domain
2. I also need a way to push that additional group down to computers already in the domain without blowing away any specific user accounts already in the local administrators group on the desktops
If I add the groups I need to the restricted groups listing in GP I end up blowing away any users who have domain accounts that are local administrators
Do I need to do #2 through a script? If so does anyone have any suggestions for setting it up
Ideas? I have dug through the KB for ages on this...
-JW
(e-mail address removed)