Re: Local admin rights not flowing through
- From: "Eric" <Eric@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 2 Jan 2006 16:20:03 -0800
I do have DNS configured correctly, including the reverse lookup zone. I use
a .local extension for internal DNS. I also looked at the event logs on both
the domain controller and the local workstations and all were squeaky clean.
I haven't tried a netdiag yet though. I'll give that a shot tomorrown. Any
other ideas anyone?
Thanks
"Steven L Umbach" wrote:
> It should work [if that is what you REALLY want to do] if you add their
> domain user account to the local administrators group on their workstation.
> You may have other issues going on here also though. First make absolutely
> sure that you have DNS configured correctly for your domain as per the KB
> article in the link below [NEVER ever have an ISP DNS server is the
> preferred DNS server list of ANY domain computer] and run the support tool
> netdiag on your domain controllers and a couple domain workstations having
> this problem and run the support tool dcdiag and gpotool on your domain
> controllers looking for any problems. Also look in the logs of the domain
> controllers and domain workstations via Event Viewer to see if any related
> problems are found. --- Steve
>
> http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B291382
>
> "Eric" <Eric@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:E9700A33-9CFD-4CF8-8E92-E52150E88DA0@xxxxxxxxxxxxxxxx
> > I've got a weird issue that I hope someone knows what's going on...
> >
> > I recently moved from my NTSBS 4.0 domain into a Win2003 AD. I have 7
> > workstations all with the same issue. I had to re-create the user
> > accounts
> > in 2003 since I couldn't find a direct upgrade path which was no big deal.
> >
> > Anyway, all of my workstations are XP SP2.
> >
> > The workstations did not have local administrator rights so the users
> > could
> > not install their own applications. I added into each user's workstation
> > their domain login name and added them as local administrator. I can log
> > in
> > as them to the local workstation and gain local admin, but if I login into
> > the domain I do not get local administrator rights.
> >
> > Here's what I tried:
> >
> > Deleting the profiles, deleting references in the registry to that user,
> > re-creating the profile by logging in again.
> >
> > I noticed when I logged in with the new user that it took a while to
> > create
> > the profile. When I logged in with the original user, even though the
> > profile directories were deleted it just said loading profile and entered
> > winxp quickly. So it looks like it was grabbing a profile from somewhere.
> > I
> > examined the PC and their home directory but could not find another
> > profile
> > directory.
> >
> > Created a new user on the domain, created a new user on the local
> > workstation and this new user did get local admin.
> >
> > Re-formatted a PC and re-patched. Added the original user in the local
> > workstation as local administrator and the problem was still there. No
> > local
> > administrator rights.
> >
> > It seems to be a profile/policy issue but no policies or roaming profiles
> > are defined in the new domain.
> >
> > Does anyone have any idea on what is going on with this?
>
>
>
.
- Follow-Ups:
- Re: Local admin rights not flowing through
- From: Steven L Umbach
- Re: Local admin rights not flowing through
- References:
- Re: Local admin rights not flowing through
- From: Steven L Umbach
- Re: Local admin rights not flowing through
- Prev by Date: Re: no security tab under properties
- Next by Date: Re: Malware?
- Previous by thread: Re: Local admin rights not flowing through
- Next by thread: Re: Local admin rights not flowing through
- Index(es):
Relevant Pages
|
Loading
