Ping a Specific Port

Question

Jason

Asked: 2014-06-24 06:33:18 +0800 CST2014-06-24 06:33:18 +0800 CST 2014-06-24 06:33:18 +0800 CST

Giving AD user accounts admin access on specific machines

772

Is there a way to give domain based accounts administrative access on specific machines and not others?

I can control access and rights to which machines a user can log in to and what their privileges are on a global scale but is there a way to control them on individual machines?

2 Answers

Voted

HopelessN00b · Answer 1 · 2014-06-24T06:46:23+08:00

Best Answer

HopelessN00b

2014-06-24T06:46:23+08:002014-06-24T06:46:23+08:00

Yes.

You can add domain accounts to individual machines, and into whatever groups you want on individual machines as well. On a manual, one-off basis (for example, NET LOCALGROUP Administrators [domain]\[account] /ADD), programmatically with a script, or even using Group Policy to handle it dynamically and automatically.

12

JamesRyan · Answer 2 · 2014-06-24T07:23:47+08:00

JamesRyan

2014-06-24T07:23:47+08:002014-06-24T07:23:47+08:00

Add them to the local administrators group on the individual machines. If you want to manage this centrally then add a domain security group per machine/group of machines enabling you to add/remove members of those groups in active directory.

1

Giving AD user accounts admin access on specific machines

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?