While there is a way to do this, I'm hesitant to describe how to do it. It's 100% unsupported from Microsoft, so...
to give you "unsupported" advice means we're entering a slippery slope together. However, one way of addressing a part of the problem is by security templates. Security templates are a "portable security knowledge" which you can create on one workstation then, if you want, walk around to the rest of your workstations and also apply. There is a good Microsoft article here about the "built in" security templates and also how to create your own and apply them as you see fit.
Dig Deeper on Microsoft Windows 2000 Server Administration
Related Q&A from Jeremy Moskowitz
Expert Jeremy Moskowitz explains to a reader what is required when making changes to a registry key in Group Policy.continue reading
Can I append Domain Groups to the local 'Admin' Group of Domain Computers without affecting the exis
Expert Jeremy Moskowitz explains what an admin would need to do to append Domain Groups to the local 'Admin' Group of Domain Computers without ...continue reading
How can I restrict rights for a group of users on a specific OU of computers, but not on any compute
Expert Jeremy Moskowitz shows a reader how to use loopback policy processing to restrict rights for a group of users on a specific OU of computers.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.