Is there a way to filter on a specific local user at the domain level?

b-frid

7/26/24, 5:27 PM

I have a local admin user account with the same username across all our domain machines. I want to apply a user level security filter on any local user with this particular username. So for instance, if my local username was 'local_admin', can I use something like 'LOCALUSER/local_admin' to tell the domain level GPO that I want to filter a policy for that specific local username only? (I think the answer is no but maybe someone knows a way...?)

0 + 4

windows

active-directory

microsoft

djdomi

7/26/24, 5:45 PM

I cant get the point of view. what do you want to solve with this question, is this business related?

tsc_chazz

7/26/24, 5:56 PM

Given per-machine users machine1\local_admin, machine2\local_admin, machine3\local_admin... @b-frid seems to be asking if there's a way to set a policy at the domain level that would affect all these users named local_admin. I can see this as a business question, if local_admin left the company and there's a need to retire the ID he made for himself locally on each machine.

b-frid

7/26/24, 6:32 PM

Specifically, I am trying to block/deny all removable media storage access for all users except a small subset of domain users and a single local account. The said local account is present (i.e. username is the same) on all machines as part of a standard build process.

Greg Askew

7/26/24, 9:31 PM

This would not work. A policy cannot be applied to a local user, due to local users do not apply group policy. This design is flawed. There are many solutions for managing local storage access, using group policy is not an option for this case

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Is there a way to filter on a specific local user at the domain level?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.