I'm trying to find out how to audit our Windows environment (with AD) for computers that have local admin rights. I want to capture users that have admin rights on any computer and remove them from our network. Any help would be appreciated.

WMI script or SMS, but really, you'll get better answers if youpost in a windows adminstration group, not exchange admin group.

You can use a VBscript like this one Dim PermittedAdmins' As ArrayPermittedAdmins = Array("Administrator", "Domain Admins") '<--- Add to this Array any additional permited adminsSet AdminGroup = GetObject("WinNT://./Administrators, Group")For Each GroupMember in AdminGroup.Members If Not IsPermitedAdmin(GroupMember.Name) Then AdminGroup.Remove GroupMember.ADsPath End IfNextFunction IsPermitedAdmin(MemberName)' As Boolean Dim i ' As Long For i = LBound(PermittedAdmins) To UBound(PermittedAdmins) If UCase(MemberName) = UCase(PermittedAdmins(i)) Then IsPermitedAdmin = True Exit Function End If Next IsPermitedAdmin = False End Function Deli