Home
Topics
Microsoft Active Directory
Microsoft Group Policy Management
Allowing users local administrative rights

Allowing users local administrative rights

I need to allow users local administrative rights to their workstations, but I don't want them to have access to change domain or network settings. Is this possible?

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

It depends on what you mean by local administrative rights. If you mean to just give a user "user rights," which elevates their privilege to perform administrative tasks, then yes. To do this, just create a GPO (or modify the local GPO) and link it to the organizational unit which contains the user's computer account. Inside the GPO, configure the appropriate user rights (under the Computer Configuration|Windows Settings|Security Settings|Local Policies|User Rights Assignment).

If you want to give the user more broad power, you can use a group like the Power Users group. However, I think that this group is not as useful as we once thought. Neither does Microsoft, as they are getting rid of the Power Users group in the next release of Windows (Vista). They are moving to a concept of LUA (Least Privileged User Account).

Microsoft has not yet developed a solution for the LUA account, since they don't have anything they can configure to allow the user to function as a LUA, but be able to perform other administrative tasks, which is what you are asking. However, there is a third party solution called PolicyMaker Security Application. This tool works seamlessly with Group Policy and allows individual tasks and applications to be elevated to administrative levels. Other solutions like RunAs, RunAs Professional, and Drop My Rights are for administrators, not end users. These tools don't provide the end user with the least privilege access.

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary

This was first published in August 2005

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

Back to top

More from Related TechTarget Sites

Server Virtualization
Cloud computing
Exchange
SQL Server
Windows IT
Enterprise Desktop
Virtual Desktop

Server Virtualization
- How to achieve optimal resource allocation and why that matters
  
  Optimal resource allocation is a tricky tightrope act for even experienced IT pros, but you can ease the process by asking yourself a few questions.
- Virtualization widens schism between server and networking teams
  
  Virtual networking has revived tensions between server and networking teams within data centers, but it's a dynamic both sides must embrace.
- Strike a common-sense balance when deciding what to automate
  
  Consider the many factors that determine the potential return on investment when deciding when and what to automate.
Cloud computing
- Interest in private clouds grows as market matures
  
  Growing interest in private clouds reflects an improved understanding of cloud computing among IT pros, experts say.
- Building a cloud ecosystem with open source software
  
  The open source community fosters innovation in the name of cloud. OW2's Cédric Thomas talks of 'coopitition' and the open source cloud revolution.
- Sequestration stymies federal government cloud ambitions
  
  The federal government is under mandates to consolidate data centers and deliver IT as a Service, but sequestration makes this easier said than done.
Exchange
- Helpful OWA 2013 mobile device hints for administrators
  
  Supporting OWA 2013 on various mobile devices can prove a bit tricky. These important tips will make life easier for admins and users alike.
- Explaining cutover vs. staged Office 365 migrations
  
  Various options exist for companies planning Office 365 migrations. Cutover and staged migrations are possibilities, but what exactly do they entail?
- Dismounted Exchange 2010 database refuses to mount
  
  A frustrated admin wants to know how to remount his Exchange 2010 database after discovering event ID 5003. One of our experts offers proper guidance.
SQL Server
- Database index design and optimization: Some guidelines
  
  What are the latest tips and tricks for database design and optimization? Check out this tip from Basit Farooq to learn more.
- Adam Machanic talks SQL Saturday
  
  We caught up with Adam Machanic, group leader of the New England SQL Server user group, at SQL Saturday Boston. Find out what he shared with us.
- SQL Server meets database application security
  
  Make sure your SQL Server is secure by studying these general guidelines for secure database applications from SQL Server expert Roman Rehak.
Windows IT
- How to advance your cloud skills and get ahead of the gap
  
  There may be a growing shortage of IT pros with cloud skills, but you can take action now and become a valuable asset with the right skills.
- Prepare for a SharePoint 2013 upgrade with five tips
  
  Considering an upgrade to SharePoint 2013? Find out the answers to the most common questions IT pros will ask before making the jump.
- Prioritize your IT tasks and finally conquer your to-do list
  
  It's easy to feel overwhelmed by a growing to-do list of IT tasks, but there are easy ways you can decide what to tackle first and what can wait.
Enterprise Desktop
- New Office 2013 features can help IT pros as much as end users
  
  New features in Microsoft Office 2013 make desktop management more efficient. See what Office Web Apps Server, Office Telemetry and more can do.
- How to remove a Windows.old folder
  
  Deleting a Windows.old folder seems simple, but it isn't. Our expert explains why Windows Desk Cleanup won't work.
- Finding a prescription for desktop security management at Sharp HealthCare
  
  Desktop security policy must cover the use of mobile devices and the cloud. Sharp HealthCare uses a mix of software for desktop security management.
Virtual Desktop
- VDI thin clients reduce hardware management headaches
  
  The initial hope for VDI thin clients was to reduce costs, but admins now just want convenience. Vendors at Citrix Synergy delivered new options.
- Citrix simplifies VDI again with XenDesktop 7-XenApp combo
  
  Citrix VDI admins can deploy and manage XenDesktop and XenApp under the same architecture, something they expected for years.
- Citrix kills its Application Streaming feature, directs users to App-V
  
  Citrix has officially ceased development and support for its Application Streaming feature, and has directed IT pros to use Microsoft App-V instead.

All Rights Reserved,Copyright - 2013, TechTarget