Share via

Local Users group and the machine account

Candy Luo 12,671 Reputation points Microsoft Vendor
2020-07-15T08:47:23.73+00:00

Can someone please explain why that I see the machine account if I list the Users group on some systems while it doesn't exist on others (same OS)?

Thread source link: https://social.technet.microsoft.com/Forums/windows/en-US/3c11ac3c-6ec1-45bf-9da6-bd9a37c07529/local-users-group-and-the-machine-account?forum=winserver8gen

Windows Server 2012
Windows Server 2012
A Microsoft server operating system that supports enterprise-level management, data storage, applications, and communications.
1,542 questions
0 comments
Accepted answer
  1. Teemo Tang 11,361 Reputation points
    2020-07-15T09:33:15.397+00:00

    I am sorry, now I understand it is the "Users" group under Local Users and Groups.

    12553-1601094.png

    We can check whether someone adds this machine account to "Users" group of domain-joined machines using the following GPO.

    Computer Configuration\Preferences\Local Users and Groups->right click "Local Users and Groups"\New\Local Group

    OR

    Computer Configuration\Policies\Windows Settings\Security Settings\Restriected Groups

    1.We can logon one problematic machine with domain administrator account.
    2.Open CMD and run as Administrator.
    3.Type gpresult /h C:\localgroup.html and click Enter.
    4.Open the html to check whether there is any one of the two group policy settings.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest