If you only need to do this for one machine.  The easiest way is to set him as a Standard user on the domain then go to his computer and run computer management.  (If you hit the Windows Key and 'r' at the same time it opens the run box then enter 'compmgmt.msc' in the box and hit enter.) 

Expand out Local Users and Groups, click on Groups.  On the right hand side, double click on Administrators.  Add his domain account into this group and he will just have admin accounts on this one computer.

Good luck.

• Proposed as answer by Yan Li_Microsoft community contributor, Moderator Friday, June 19, 2015 6:31 AM
• Marked as answer by Bruce WoodingModerator Wednesday, June 24, 2015 9:58 PM
• Unmarked as answer by Theokrat 7 hours 30 minutes ago

If you only need to do this for one machine.  The easiest way is to set him as a Standard user on the domain then go to his computer and run computer management.  (If you hit the Windows Key and 'r' at the same time it opens the run box then enter 'compmgmt.msc' in the box and hit enter.) 

Expand out Local Users and Groups, click on Groups.  On the right hand side, double click on Administrators.  Add his domain account into this group and he will just have admin accounts on this one computer.

Good luck.

• Proposed as answer by Yan Li_Microsoft community contributor, Moderator Friday, June 19, 2015 6:31 AM
• Marked as answer by Bruce WoodingModerator Wednesday, June 24, 2015 9:58 PM
• Unmarked as answer by Theokrat Wednesday, July 22, 2015 11:53 PM

If you only need to do this for one machine.  The easiest way is to set him as a Standard user on the domain then go to his computer and run computer management.  (If you hit the Windows Key and 'r' at the same time it opens the run box then enter 'compmgmt.msc' in the box and hit enter.) 

Expand out Local Users and Groups, click on Groups.  On the right hand side, double click on Administrators.  Add his domain account into this group and he will just have admin accounts on this one computer.

Good luck.

• Proposed as answer by Yan Li_Microsoft community contributor, Moderator Friday, June 19, 2015 6:31 AM
• Marked as answer by Bruce WoodingModerator Wednesday, June 24, 2015 9:58 PM
• Unmarked as answer by Theokrat Wednesday, July 22, 2015 11:53 PM

I am running Microsoft Windows Server 2012 R2 Essentials as a domain in my home network.  I have several Windows 8.1 Clients and a few Windows 10 (Beta) VMs.  These are joined to my home domain.

For my son's PC I want to set him up as a Local Administrator so that he can install software, but only on his PC.  Not on any other PC in the domain.

His USERID is a Domain Logon.  There seem to be 3 possible options - Standard, Administrator, and a third option.  By selecting Administrator I see he appears to be a Domain Administrator which is much broader control than I want him to have.

The third option has a drop down box and there seemed to be a number of other "default" Windows groups he could be assigned to.  But none looked like they would be a Local Administrator?

How can I setup my son's account so that he can keep a Domain USERID and logon to other PCs in my home network, but only be a Local Administrator for his own PC?  Do I need to somehow add a group to the list that shows up in the third option?  If so, how do I go about doing this?  (I didn't see any option like this on the various control panel and other menus I've found in poking around Windows.)

Thanks for your assis

If you only need to do this for one machine.  The easiest way is to set him as a Standard user on the domain then go to his computer and run computer management.  (If you hit the Windows Key and 'r' at the same time it opens the run box then enter 'compmgmt.msc' in the box and hit enter.) 

Expand out Local Users and Groups, click on Groups.  On the right hand side, double click on Administrators.  Add his domain account into this group and he will just have admin accounts on this one computer.

Good luck.

David,

Sorry I wasn't very clear about my needs.

I would prefer to keep my son as a Domain user due to other computers in my home network.  But on only 2 PCs I would like him to be a Local Administrator.

Can this be done?

Thanks for any assistance.

P.S.  Sorry for the delay in responding.

Add the domain user to the local "administrators" group on that machine.  On that machine as an administrator...

Right-Click on "My Computer" -> Manage -> Local Users and Groups -> Groups

 then double-click on "Administrators" -> Add ->  Locations -> [select domain] -> Enter User Name in Box

   -> Check Names -> then "OK"