This is a common issue. The problem is that if you could add a restricted user to the local administrators group without a password, how could you prevent users from adding themselves to the local administrators group? Thus, only a local administrator can add a user to the local administrators group. You could use Cusrmgr (Windows 2000 Resource Kit) and specify a password on the command line, but that's just not very safe. Instead, I recommend that you create a WMI script to connect to the computer and then add the user to the local administrators group. Check out Microsoft's script Web site for a number sample scripts.
Dig Deeper on Windows client management
Related Q&A from Jerry Honeycutt
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.