Locking down a workstation.
From: tim border (tim.border@scott.af.mil)
Date: 03/12/03
- Next message: Steve Shurber: "Transparent Screen Lock for WinNT/2000/XP"
- Previous message: Carl Hilton: "Locking down a workstation."
- In reply to: Carl Hilton: "Locking down a workstation."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "tim border" <tim.border@scott.af.mil> Date: Wed, 12 Mar 2003 12:12:39 -0800
In the local security policy (or group policy for that
server) modify the attributes for the "Log on locally"
user right assignment. That'll keep domain users from
casually logging in but by itself won't be sufficient to
call the box secure. You'll want to dig through the
security policy. There's a ton of other stuff you'll want
to do. Several articles exist that deal with placing
computers in common areas. To keep this post quick you'll
also want to consider removing all removable media devices
from the boot order and locking the bios. A padlock on
the server would not be a bad idea either.
>-----Original Message-----
>OK, I have been forced to put a server in an open area of
an office
>building. I know that to minimize problems, I need to
restrict physical
>access but can't, so let's not go there. I would like to
know what other
>steps I can take to prevent domain users from logging in
to this server.
>However, I still want access, at least by Administrators,
via remote desktop
>connections, and local Admins.
>
>Thanks
>Carl
>
>
>.
>
- Next message: Steve Shurber: "Transparent Screen Lock for WinNT/2000/XP"
- Previous message: Carl Hilton: "Locking down a workstation."
- In reply to: Carl Hilton: "Locking down a workstation."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
