JSI Tip 6274. How can I add membership to a built-in Domain Local group on a domain controller?

If you delete any membership of a special built-in Domain Local group on a domain controller, there is no obvious way to re-add the membership.

Example:

If you delete Authenticated Users from the Local Users group on a domain controller, you cannot use Active Directory Users and Computers to add Authenticated Users to the Local Users group.

You can use the command line to re-add the membership:

1. Open a CMD.EXE prompt.

2. Type net localgroup users "nt authority\authenticated users" /add and press Enter.

The Windows 2000 special groups are:

Authenticated Users
Anonymous Logon
Batch
Creator Owner
Creator Group
Dialup
Enterprise Domain Controllers
Everyone
Interactive
Network
Proxy
Restricted
Self
Service
System
Terminal Server User
NOTE: A user becomes a member of a special group based upon the activity they are performing. A user becomes a member of the Interactive group when they log on locally. They become members of the Network group when they connect to a computer over the netwrk.


Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish