You know that in Windows 2000 you only want the administrator account, or members of the administrator group, to create user accounts. What you may not realize, however, is that members of the power user group can create user accounts, too.


  • Go to Control Panel


  • Then open Administrative tools


  • Launch the Computer management Application


  • Open the Local users and Groups snap-in (In Win2k, you have to click on Groups)


  • In the right-hand pane, double-click on Power users.


  • Select NT AUTHORTYINTERACTIVE and click Remove.

This procedure will remove the Power Users group members' ability to create user accounts. But what about a user who has a notebook computer for both home and work? As long as the user has an account on the computer sharing the resource, a local account for the user can be created and applied to the local administrator group, so that the user can work at home and make necessary changes to the configuration in order to get into the home network. Since the user is now a member of the administrator's group, he should be educated on certain basic security issues such as locking the computer by pressing CTRL ALT DELETE keys when he leaves

Requires Free Membership to View

it alone. The password for this account should be changed every 30 days, and the account should lock out after three failed attempts. If this happens, the network administrator will have to reset the account by logging on using the main administrator account.

Adesh Rampat has 10 years experience with network and IT administration. He is a member of the Association Of Internet Professionals, the Institute For Network Professionals, and the International Webmasters Association. He has also lectured extensively on a variety of topics.

This was first published in May 2002

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.