Thanks! However, since I've already entered the realm of dumb questions, how does one script adding a local admin?
The alternative might be to add the temporary install account to the DomainAdmins group, but that sounds truly reckless. -- Richard "Carl Houseman" <[email protected]> wrote on 04/02/2009 08:18:01 AM: > A user has to be a local administrator to install software. > Anything less would not be reliable. > > So script adding the user to the local admins group, do your > install, then remove from the group. > > Another choice is to run the install as a startup script. > > Carl > > From: [email protected] [mailto:[email protected]] > Sent: Thursday, April 02, 2009 8:56 AM > To: NT System Admin Issues > Subject: Perhaps a dumb GPO question... > > > ...but I need to know how to assign the right to install software to > a particular user. > > Somewhere in user rights assignment ought have this, but it's not explicit. > > Would "Log on as a service" and/or "Act as part of the OS" do this? > > Note that this would not be an actual person using the desktop > systems but rather would be a "user" scripted in an install > procedure. This user would then be disabled once the installs are completed. > > Thanks! > -- > Richard D. McClary > Systems Administrator, Information Technology Group > > ASPCA® > 1717 S. Philo Rd, Ste 36 > Urbana, IL 61802 > > [email protected] > > P: 217-337-9761 > C: 217-417-1182 > F: 217-337-9761 > www.aspca.org > > The information contained in this e-mail, and any attachments > hereto, is from The American Society for the Prevention of Cruelty to Animals® > (ASPCA®) and is intended only for use by the addressee(s) named > herein and may contain legally privileged and/or confidential > information. If you are not the intended recipient of this e-mail, > you are hereby notified that any dissemination, distribution, > copying or use of the contents of this e-mail, and any attachments > hereto, is strictly prohibited. If you have received this e-mail in > error, please immediately notify me by reply email and permanently > delete the original and any copy of this e-mail and any printout thereof. > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
