Re: Disabling Interactive Login
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 08/23/05
- Next message: mahendra: "Re: Windows 2000 startup password"
- Previous message: -KK-: "Disabling Interactive Login"
- In reply to: -KK-: "Disabling Interactive Login"
- Next in thread: -KK-: "Re: Disabling Interactive Login"
- Reply: -KK-: "Re: Disabling Interactive Login"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 22 Aug 2005 23:34:04 -0500
You can configure security policy which is a subset of Group Policy to
modify user rights for logon locally or deny logon locally. For instance
you could create a global group and add it to the deny logon locally user
right via Group Policy to all computers in a domain or Organizational Unit.
Be careful with deny user rights as they override the companion allow user
right and keep in mind that administrators are members of users,
authenticated users, and everyone groups. --- Steve
"-KK-" <KK@discussions.microsoft.com> wrote in message
news:14787456-9319-4E3E-9E6B-303C970534C7@microsoft.com...
> We've been working on an in-house application that works through an
> portal.
> Users who log-in through this portal use LDAP to authenticate through
> Active
> Directory.
>
> Is is possible to make these logins disabled from being able to
> Interactively Login to a desktop machine on the domain..?
>
> If so which method would be the best way..? Using Group Policies or is
> there
> a better option within Active Directory.
>
> Thanks,
- Next message: mahendra: "Re: Windows 2000 startup password"
- Previous message: -KK-: "Disabling Interactive Login"
- In reply to: -KK-: "Disabling Interactive Login"
- Next in thread: -KK-: "Re: Disabling Interactive Login"
- Reply: -KK-: "Re: Disabling Interactive Login"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
