How to Check Local Administrators Group

In this tutorial, you will learn how to check the local administrator’s group on multiple computers. This report will show you which users and groups have administrator rights on local computers or servers.

Requirements:

  • WMI needs to be allowed inbound on the target computer.
  • You will need to be an administrator on the target computer.

Step 1. Click on Local Admins Report

Step 2. Select path

  • Entire Domain = This will search all computers in your domain
  • Select OU or Group = Specify an OU or group (you can select more than one).
  • Search = Search your domain for a specific group.

Options

By default, the tool will only search the local administrator’s group. If you want to get the members of all groups check the bow Show All groups.

Step 3. Click Run.

To run the report click the run button.

Review the Local Administrator report

Let’s look at computer SRV12 from my report.

The report shows 4 members of the local administrator group (Administrator, Domain Admins, Accounting_1, and vendor_1).

Here is what each column means in the report.

  • Computer = Hostname of the computer.
  • Group Name = Name of the local group on the computer.
  • Member Name = Name of the group or users that is a member of the group.
  • Object Class = The members will either be a group object or a user object.
  • Principal Source = The object will either be a domain object or a local object.
  • Status = Indicates if the tool was able to connect to the target computer.

You can export the report by clicking the export button.

Troubleshooting

Issue #1. Unable to Connect – The RPC server is unavailable. (Exception from HRESULT: 0x800706BA)

Resolution:

This is typically a firewall issue. Verify the following firewall rules are enabled inbound on the target computer.

Issue #2. Unable to Connect – The RPC server is unavailable.

Resolution:

The computer is offline or unreachable. Verify the computer is online and can be reached by your computer.

Issue #3. Unable to Connect – Access is denied.

The computer has lost its trust relationship with Active Directory or you do not have administrator rights.

Verify WMI Connectivity with PowerShell

Use the following command to test the WMI connection from your local computer (that has the AD Pro Toolkit installed) to the remote computer. Replace PC2 with the remote computer hostname. 

Get-WmiObject -query "SELECT * FROM Win32_OperatingSystem" -ComputerName PC2

If the connection is successful you will get a message like below.

If WMI is being blocked you will get a message like below.

The AD Pro Toolkit simplifies Active Directory management and saves hours of manual work. Download Free Trial.