1 Reply Latest reply on Dec 6, 2011 3:35 AM by JoeBidgood

    Localadmin Removal for High Risk Systems

      Hi,

       

      I am working to automate protection for High Risk systems in ePO 4.6.

      In our environment, everyone gets local admin by default.

      So far, I have an automated taging method which works pretty well. The high risk systems have more protective policies and on demand scans.

      Next, I would like to add a step that removes localadmin rights from XP or Windows7 triggered from ePO. I know ePO has a scripting interface now. Could there be a way to use this feature to run script to zap local admin rights? Any other ideas?

       

      Thanks,

      Thomas