This post has been republished via RSS; it originally appeared at: New blog articles in Microsoft Community Hub.
User Rights Assignment is one of those meat and potatoes features of the operating system that we all have a cursory understanding of but rarely think about in depth. User rights include logon rights and permissions. Logon rights control who is authorized to log on to a device and how they can log on. User rights permissions control access to computer and domain resources, and they can override permissions that have been set on specific objects. User rights are managed in Group Policy under the User Rights Assignment item.
We created the video below to explain the different User Rights Assignment policies that are available and how you can use those policies to control who is able to log onto a device and what they are able to do once they've logged on. It's a topic you're probably passingly familiar with - and the video provides a summary of what's in the documentation that you can listen to or watch as a refresher (or introduction) to this foundational element of Group Policy functionality.
The documentation on User Rights Assignment Policies: https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/user-rights-assignment