Giving AD user accounts admin access on specific machines

windows active-directory windows-server-2012 users permissions
23,159

Solution 1

Yes.

You can add domain accounts to individual machines, and into whatever groups you want on individual machines as well. On a manual, one-off basis (for example, NET LOCALGROUP Administrators [domain]\[account] /ADD), programmatically with a script, or even using Group Policy to handle it dynamically and automatically.

Solution 2

Add them to the local administrators group on the individual machines. If you want to manage this centrally then add a domain security group per machine/group of machines enabling you to add/remove members of those groups in active directory.

Share:
23,159

Related videos on Youtube

Jason
Author by

Jason

Updated on September 18, 2022

Comments

  • Jason
    Jason over 1 year

    Is there a way to give domain based accounts administrative access on specific machines and not others?

    I can control access and rights to which machines a user can log in to and what their privileges are on a global scale but is there a way to control them on individual machines?

    • joeqwerty
      joeqwerty almost 10 years
      Q: Is there a way to give domain based accounts administrative access on specific machines and not others? A: Yes. Add the domain accounts to the local Administrators group on the desired machines.
  • Brad Bouchard
    Brad Bouchard almost 10 years
    +1 for the clean, simple answer that also has a nice flow to it with the links...

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Active Directory setup with Profile Path and Home Folder
Exchange 2013 Error - MapiExceptionUnknownUser: Unable to open message store
Cannot create printer object in Active Directory, even though the printer is on the same server
How can I change dns name on domain controller?
How do I grant local administrator rights, but not Domain Administrator Rights?
Join Windows 2003 R2 guest to Windows 2012 R2 domain controller
Take ownership of a file in Windows Server 2012
Reuse old domain controller IP address
Active Directory roaming profile permission issue on folder C:\Users\<user>\AppData\Roaming\Microsoft\Installer
Unable to modify registry as admin on Windows 2012