Be it a work or school administrator, the admin sounds like he knows what he's doing. And, someone correct me if I'm wrong, but short of finding an admin account password, there is not much you can do. In order to access group policy, you'd need a domain administrator account password, assuming you are on a domain.

If you are on a workgroup, you'd need a local administrator password in order to access group policy objects. Keep in mind, that administration is about you being limited in what you are able to do, and if it is to the point where you are angry, just tip your hat to the admin, and back off.

As far as I know, anti-online does not support what you want to know, as it is blackhat activity, and besides, even if you were to access a dom admin or local admin it would be logged somewhere on the domain via auditing. One of the worst things you can do on a win2k box, with local user rights, is to attempt to gain access any higher without actually making any progress. If your admin has group policy enabled, he no doubt has auditing enabled, and if he happens to look at the security log on your machine, he WILL know what you are trying to do, and you'll be the one at war, either to keep your job, or stay in school.


Just my 2 cents.