Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Strange admin user

Status
Not open for further replies.
drkestrel

drkestrel

MIS
Sep 25, 2000
439
GB
Running Windows XP Professional on a Windows Domain.

Strange behaviours:
1) Default Administrator account, when logged on, it immediately shows "Saving settings" and logged the administrator out

2) MyDomain\Me has always been a member of Administrators group on the PC, but double-clicking on Add/Remove Program", A Warning "Add or Remove Programs has been restricted. Please check with your administrator.

3.1) Logged on as MyDomain\Me to create another Local user admin2 which is member of Administrators.

3.2) admin2 tried to log on, it immediately shows "Saving settings" and logged the administrator out!

What is up? What could b wrong? Symantec Anti Virus Corporate Edition virus definition is up to date and never had any blaster, etc. virus on my PC.

Could I have locked down my machine too much accidentally? What is wrong! :-(
 
Sort by date Sort by votes
Try a local console logon as Administrator. If that succeeds I suspect you have used group policy to restrict administrator accounts to local console logons only in Group Policy.
 
Upvote 0 Downvote
What "Local Console" are you talking about?

All these behaviour happens in front of my PC (not remote connection or terminal services, etc.)
 
Upvote 0 Downvote
When you see the logon window scroll the Domain box and select the local console instead of a domain workstation. It is usually marked "This Workstation."
 
Upvote 0 Downvote
Sorry if I have confused you bcastner,

Administrator and admin2 are users local to my workstation running Windows XP Professional.

As such, when I log on using to my workstation using these two user IDs (instead of to my domain), I get logged out immediately!

On top of this, MyDomain\Me has been configured as member of Administrators group, but for some reasons, it doesn't have any rights to "Add/Remove Programs".
 
Upvote 0 Downvote
It is pefectly possible with Domain GPOs to remove the local Administrator Group entirely, or disable it absolutely.

I suspect Group Policies at the Domain level have been implemented to essentially disable the local Administrators Group, and devolve your remaining user to the status of a limited user.
 
Upvote 0 Downvote
This has not been done at the Group Policies.

Why couldn't MyDomain\Me add/remove programs anyway?

It could do other admin stuff like Create users member of ADministrators, kill processes, change clock, etc.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

VicM
  • Locked
  • Question
Change name not showing in user account 1
Replies
13
Views
2K
guitarzan
guitarzan
Flinx
  • Locked
  • Question
Windows 10 Strange problems recently appear caused by microsoft ransomeware protection
Replies
3
Views
1K
Andrzejek
Andrzejek
xwb
  • Locked
  • Question
Switching to admin user when installing msi
Replies
0
Views
206
xwb
xwb
theConjurian
  • Locked
  • Question
No administrator rights after upgrading to Windows 11
Replies
19
Views
3K
goombawaho
goombawaho
xwb
  • Locked
  • Question
Strange display problem 1
Replies
8
Views
356
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top