Access is denied occurs if I want to add a user to the Administrators group

SC 206 Reputation points
2024-04-15T16:07:24.62+00:00

Hi,

"Access is denied" occurs if I want to add a user to the Administrators group.

If I allow Outbound for Domain Profile, adding the user works.

What Firewall rule do I need, what port to open, please?

 Thank you very much in advance.

user01

user02

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,339 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Jing Zhou 7,520 Reputation points Microsoft Vendor
    2024-04-17T03:08:41.4133333+00:00

    Hello,

     

    Thank you for posting in Q&A forum.

    To check the specific rule, please kindly open the outbound rules and see if there's any AD connection traffic.

    1.You can try to export the outbound rules by below PowerShell command:

    Export-FirewallRule -Direction Outbound -FilePath "C:\temp\rules.xml"

    2.Check if there's any TCP.Port 389,636,3268,3269 related dennied in outbound rules.

    To help other customers who may be facing the same issue, please don't forget to vote if the reply is helpful.

    Hope this answer can help you well.

    Best regards,

    Jill Zhou


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.