Re: Group Policy and user level access

---

• From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
• Date: Fri, 20 Apr 2007 08:42:25 -0700

---

"Dana" <raff242@xxxxxxxxx> wrote in message
news:6beb9$46285710$944e306e$21159@xxxxxxxxxxxxxxx

"Falcon1" <Falcon1@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:A8B0CD29-813E-4509-88CA-97AD85252E88@xxxxxxxxxxxxxxxx

Hi,

We are running Windows XP Pro and 2000 Pro on our computers. I'm in the
process of learning Group Policies and how to create, manage, deploy and
troubleshoot them (AD is still on 2000 Server based)

My 2x questions are:

How come when I remove the local Administrator rights to a user and leave
him on a basic user level access we run into all kinds of software issues
that we do not have if the user is part of the admin group. Such as
Outlook
printing issues that can't create documents in Temp folders and so many
other
sotwares having all kind of hickup behaviors?

Why do you want to interfere in the productivity of others.

I do not know for the original poster, but see below . . .

My second question is it possible to leave my users in the local admin
groups but with group policy deny them the rights to install or remove
any
applications? If so how?

Why do you want to limit what a person can or cannot do.

Most studies have shown the a main factor in the cost of supporting
desktop systems is whether the users of those systems are or are not
running as admins, with it obviously being much higher if they are.
Interfering with their productivity is usually not required, if one does
first test and prepare for the reduction of their priv level.

Any help will be greatly appreciated since I'm kind of in a nightmare in
troubleshooting and administering all of what goes on the users computers

Thank you
Gabriel

.

---

• Follow-Ups:
  • Re: Group Policy and user level access
    • From: Dana

• References:
  • Re: Group Policy and user level access
    • From: Dana

• Prev by Date: Re: Group Policy and user level access
• Next by Date: Re: Encryption
• Previous by thread: Re: Group Policy and user level access
• Next by thread: Re: Group Policy and user level access
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Group Policy and user level access ... We are running Windows XP Pro and 2000 Pro on our computers. ... My second question is it possible to leave my users in the local admin ... (microsoft.public.win2000.security) Re: Group Policy and user level access ... We are running Windows XP Pro and 2000 Pro on our computers. ... My second question is it possible to leave my users in the local admin ... (microsoft.public.win2000.security) Re: 2 Computers continuosly reboot suddenly ... 2 of my computers on my home LAN stopped to function suddenly. ... then the system restarts. ... One of the PCs is running Windows XP Pro, ... (microsoft.public.windowsxp.help_and_support) Re: Network problem with XP and 2k Pro ... > Hi I have two computers one running windows XP and the other running Win ... 2000 Pro. ... the other to share my high speed Internet access between the two? ... (microsoft.public.windowsxp.network_web) Re: File sharing between two computers ... > We have 2 computers. ... > other is a laptop running Windows XP Home SP1. ... The problem I am having is that the laptop (running Win XP Home ... > (running Win XP Pro) cannot access the shared folders stored on the ... (microsoft.public.windowsxp.network_web)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.win2000.security  > 2007-04