Hello,

We are operating in a Windows Server 2008 R2 domain and I have been asked to lock down access some servers. By lock down I mean there are only 5 administrators that need to be able to access a hand full of servers. These 5 administrators should not be able to access any other servers and none of the other administrators (unless in the domain admins group) should be able to access the servers. I created a security group and added the 5 admin accounts. I've come across documentation that says I need to configure NPS for secure access, but for the life of me I can't figure out how to do it for the security group. Could anybody point me in the right direction to complete this task.

Thanks in advance.

Hi,

Based on your requirement, you need to add your domain security group to the local administrators group of your required servers.
You can achive your requirement using below methods,
- Restricted Groups
- Group Policy Preferences

Checkout the below thread on similar discusssion,
https://social.technet.microsoft.com/Forums/windowsserver/en-US/52bc29f3-666b-4360-8527-2140dda3fa58/how-to-add-domain-group-to-local-group-using-gpo

Hope the above information might b