Re: Couple of issues
From: JR (jrkim_mail@yahoo.com)
Date: 09/12/02
- Next message: JR: "event ID 1003 - scepol.log error 4312 ?"
- Previous message: Frank Durham: "Win2K logon through Firewall"
- In reply to: Jim Campau: "Re: Couple of issues"
- Next in thread: lphillips: "Re: Couple of issues"
- Reply: lphillips: "Re: Couple of issues"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "JR" <jrkim_mail@yahoo.com> Date: Thu, 12 Sep 2002 09:21:53 -0700
As for the printers share folders, set permissions on the
printer shares. Everybody on NT4 domain, you can
literally browse anything, but in order for limiting the
access, set the permissions. I believe you can also hide
the printer share by using $ at the share name. That will
hide some printer shares.
As for the group policy goes on nt4 domain, you could
create group policy file make it happen, but the settings
are limited. You might want to use Microsoft's Security
Configuration Tool to set the setting and then export it
to template file (.inf) then put it in a logon script or
image of the desktop so that it can be applied. Use
secedit command line utility that comes with SCM.
As for the internet explorer access, I don't know how's
your network is setup, but you can filter at the firewall
level to block http and https ports going out to internet
or you could also block at router level for ports going
out to internet. You could also setup users with private
ip addresses and set up proxy servers to block ip
addresses going out to internet. There are many ways, but
I don't think there is a way for software side since
sounds like your users are more than average users.
Good luck,
JR
>-----Original Message-----
>You cannot have group policy without 2000AD.
>I suggest you upgrade to 2000 after all NT4 is no longer
the industry
>standard. What are you waiting for???
>
>
>"Steve" <stebs@talk21.com> wrote in message
>news:eWrS8xlWCHA.2452@tkmsftngp09...
>> Hello,
>>
>> I have a network of around 50 users and when I log into
the network as a
>> test user with minimal rights I am able to browse to
other pc's on the
>> network through My Network Places and expand the PC to
find their printer
>> folder and on some but not all of them I am able to
schedule tasks to run
>at
>> specific times. Now I thought it might be to do with
not having a local
>> admin password set on that machine but this isn't so is
their any other
>> reason why this is possible? And how do i get around it?
>>
>> Also i would like to be able to apply group policies
across the network
>but
>> at present I am running a NT4 domain as apposed to a
win2k domain and
>active
>> directory, can group policies be applied to an NT4
domain? and how? (the
>> network has 3 NT4 servers and 2 Win2k servers the
domain is authenticated
>by
>> a NT4 server.) Files are held on a win2k server.
>>
>> Finally, is there any way of restricting people using
internet explorer so
>> they can only access our intranet site(this network
doesn't have access to
>> the internet but the user can enter printer ip
addresses and server names
>to
>> try and access stuff they shouldn't be.)
>>
>> Big thanks in advance
>>
>> Steve
>>
>>
>
>
>.
>
- Next message: JR: "event ID 1003 - scepol.log error 4312 ?"
- Previous message: Frank Durham: "Win2K logon through Firewall"
- In reply to: Jim Campau: "Re: Couple of issues"
- Next in thread: lphillips: "Re: Couple of issues"
- Reply: lphillips: "Re: Couple of issues"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
