as pointed out by Susan, using the Power User group is not considered a best practice. What are your reasons why you want to use this group?
Have a look at the following recently released (and way overdue) whitepaper from MS on leveraging the principle of least privilege for users on WinXP http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/luawinxp. mspx /Guido -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] Sent: Sonntag, 12. Februar 2006 04:06 To: [email protected] Subject: Re: [ActiveDir] Poweruser addition A member of the Power Users group may be able to gain administrator rights and permissions in Windows Server 2003, Windows 2000, or Windows XP: http://support.microsoft.com/default.aspx?scid=kb;en-us;825069 Just a little reminder of the fact that power user isn't that far away from admin rights.... Freddy HARTONO wrote: > If you put that into the computer startup script that would work as it > will be run under system context > > > Thank you and have a splendid day! > > Kind Regards, > > Freddy Hartono > Group Support Engineer > InternationalSOS Pte Ltd > mail: [EMAIL PROTECTED] > phone: (+65) 6330-9785 > > > > ------------------------------------------------------------------------ > *From:* [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] *On Behalf Of *Senthil Kumar > *Sent:* Sunday, February 12, 2006 4:03 AM > *To:* [email protected] > *Subject:* [ActiveDir] Poweruser addition > > Hi, > > I want to add a particular user in the power users group of all the > computer in the domain. I have tried the command > > net localgroup "power users" helpdesk /add > > But this command can not be used when the logging user is having > restriced access. > > I have also seen usrtogroup utility also. > > Is there any options in the Group policy so that I can do that in a > efficient way. > > Regards, > > Senthil > > > > <http://adworks.rediff.com/cgi-bin/AdWorks/sigclick.cgi/www.rediff.com/s ignature-home.htm/[EMAIL PROTECTED]> -- Letting your vendors set your risk analysis these days? http://www.threatcode.com List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
