Ping a Specific Port

Question

ICTdesk.net

Asked: 2010-06-12 05:25:17 +0800 CST2010-06-12 05:25:17 +0800 CST 2010-06-12 05:25:17 +0800 CST

Change localadmin on workstations

772

We have scanned our domain and there are just a couple of PC's where an user is localadmin (this was enabled in the past for a certain application/installation). We need to disable this now. Is there a way to do this remotely?

OS: windows XP clients in network / domain environment

3 Answers

Voted

phuzion · Answer 1 · 2010-06-12T05:43:48+08:00

Best Answer

phuzion

2010-06-12T05:43:48+08:002010-06-12T05:43:48+08:00

Open Active Directory Users and Computers, select the computers in question, right click, select manage, and remove their domain accounts from the Administrators group. Close, and have the users log out and log back in again.

Problem solved.

3

user45574 · Answer 2 · 2010-06-12T05:37:32+08:00

user45574

2010-06-12T05:37:32+08:002010-06-12T05:37:32+08:00

I think what you are looking for is the use of restricted groups through group policies. I found this article which explains the use of restricted groups in detail: http://www.windowsecurity.com/articles/Using-Restricted-Groups.html

Hope this helps.

0

natxo asenjo · Answer 3 · 2010-06-12T05:51:34+08:00

natxo asenjo

2010-06-12T05:51:34+08:002010-06-12T05:51:34+08:00

you could try psexec \\machinename net localgroup "administrators" "domain\user" /delete

0

Change localadmin on workstations

Ping a Specific Port

How do I tell Git for Windows where to find my private RSA key?

How do you restart php-fpm?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?