In this post, I will show you how to add a user to the Local Administrators Group on the machines using GPO. Point to note that this procedure is not limited to adding a user to local Administrators group. You can use the process to rename, create or delete a Local Group (by selecting different Action in the GPO setting). We will choose Update Action as we are updating Local Administrators Group. We will be using Group Policy Preferences (GPP) to complete this task.
You can use Restricted Groups GPO setting as well, but using Restricted Groups you cannot add users to the Local Groups. For adding a user to the local groups, you have to use Local Users and Groups in Group Policy Preferences (GPP). Existing Group Membership will not be affected.
GPO Setting location:
Computer Configuration – Preferences – Control Panel Settings – Local Users and Groups
This is how the Local Administrators group looks like on one of the Windows 10 machine before we create and apply our new GPO.
On your Active Directory Domain Controller or the machine where you have Group Policy Management Console Installed. Go to Start -> Run -> Type gpmc.msc and Press Enter to open the GPMC console.
Strictly Necessary Cookies
Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.
If you disable this cookie, we will not be able to save your preferences. This means that every time you visit this website you will need to enable or disable cookies again.