You work for a company that has expanded to a branch office and you have a deployed a Windows Server 2008 R2 RODC (Read Only Domain Controller). You now want to add a local administrator to be able to assist in local administrative tasks. You are chocked to find that the local user and groups part of the server is missing. How to proceed?



The solution to this relies upon the command shell and i take for granted that you have some experience in using it.

On the Windows Server 2008 R2 RODC:

  1. Open up the Command Prompt by going to Start > Command Prompt.
  2. Type dsmgmt and hit enter.
  3. Now we want to add a user so we type Local Roles and hit enter. (Type ? for other options)
  4. Type add “USER TO ADD” administrators and hit enter. Replace “USER TO ADD” with your users name. (In my labb environment it would look like add ladmin administrators)
  5. Close the command prompt.

Now you have successfully added a user to the local administrators group for the RODC.

Published by Wouter Makkinje

I am a 30 Year old IT Consultant from Kalmar Sweden.