Score:0

Is there a way to filter on a specific local user at the domain level?

cn flag

I have a local admin user account with the same username across all our domain machines. I want to apply a user level security filter on any local user with this particular username. So for instance, if my local username was 'local_admin', can I use something like 'LOCALUSER/local_admin' to tell the domain level GPO that I want to filter a policy for that specific local username only? (I think the answer is no but maybe someone knows a way...?)

djdomi avatar
za flag
I cant get the point of view. what do you want to solve with this question, is this business related?
tsc_chazz avatar
vn flag
Given per-machine users machine1\local_admin, machine2\local_admin, machine3\local_admin... @b-frid seems to be asking if there's a way to set a policy at the domain level that would affect all these users named local_admin. I can see this as a business question, if local_admin left the company and there's a need to retire the ID he made for himself locally on each machine.
b-frid avatar
cn flag
Specifically, I am trying to block/deny all removable media storage access for all users except a small subset of domain users and a single local account. The said local account is present (i.e. username is the same) on all machines as part of a standard build process.
cn flag
This would not work. A policy cannot be applied to a local user, due to local users do not apply group policy. This design is flawed. There are many solutions for managing local storage access, using group policy is not an option for this case
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.