Branch offices use Internet Connection Sharing (ICS). A new administrator on a Windows 2000 Server receives “Access is denied” when using Windows Update → Product Updates. He must update the server using his own account. What is the appropriate fix?

Introduction / Context:
Installing updates via Windows Update on Windows 2000 requires local administrative rights because updates modify protected system files, services, and registry areas. An “Access is denied” error at Product Updates typically indicates insufficient local permissions, not a networking block from ICS or mail protocols like POP3/SMTP.

Given Data / Assumptions:

• Server is Windows 2000; user is configuring it as a file server.
• Internet access is via ICS; Product Updates page is reachable.
• Error is “Access is denied,” suggesting authorization rather than connectivity.

Concept / Approach:
Grant the administrator’s account membership in the local Administrators group on that server. Local admin rights satisfy Windows Update’s elevation requirements. Using a domain administrator account is unnecessary if local admin rights suffice, especially in environments practicing least privilege. ICS mail protocol openings are irrelevant to Windows Update and will not resolve an authorization error.

Step-by-Step Solution:

Verification / Alternative check:
Confirm the user can now initiate and complete Windows Update installations; review Windows Update logs to ensure no permission-related failures remain.

Why Other Options Are Wrong:

• POP3/SMTP access: unrelated to Windows Update.
• Log on as domain admin: over-privileged; local admin is sufficient and preferable.
• None of above: incorrect because granting local admin rights resolves the issue.

Common Pitfalls:
Confusing connectivity issues with authorization; granting domain-wide admin rights when local rights suffice; forgetting to verify proxy/IE security settings if other errors appear.

Final Answer:
Give the administrator’s user account local administrator privileges on the Windows 2000 Server.