Local user deny in Active Diretory


i find docs (https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/appendix-h--securing-local-administrator-accounts-and-groups)
i want to apply that.
but i have 100 more local account.
How can I organize it efficiently?

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,817 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Fan Fan 15,291 Reputation points Microsoft Vendor

    Based on my research, we don't need to do this for all he local accounts.
    We did this to protect the local administrator account.

    Or if you do need to do this, you can add the local accounts into a group.
    Then you can use the GPO to deny the rights to the local group.

    Best Regards,

    0 comments No comments

  2. Anonymous

    can i register group "Administrator"?
    i register "Administrator" but system occur Error
    So i do not there ㅠ.ㅠ