Re: Restricting computer privileges by login
From: Roger Abell [MVP] (mvpNOSPAM@asu.edu)
Date: 11/07/02
- Next message: Gordon C.: "Renaming Owner Profile in Home Edition"
- Previous message: Roger Abell [MVP]: "Re: CSRSS Messenger popup problem"
- In reply to: halve: "Re: Restricting computer privileges by login"
- Next in thread: halve: "Re: Restricting computer privileges by login"
- Reply: halve: "Re: Restricting computer privileges by login"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Roger Abell [MVP]" <mvpNOSPAM@asu.edu> Date: Thu, 7 Nov 2002 07:30:48 -0700
Well, the operative question is: Do you have an
Active Directory domain?
If yes, then you can do all policy serverside and have it
enforced onto the client machines. If no, then no.
You can always develop templates that can be copied
to stand-alone (i.e. no AD) machines and applied to
each, on a one by one basis.
It is possible some but not all of what you want in the
way of lockdown is available in policy. You might
want to look at the way things are set, and the way
things are applied to a machine, as outlined in the
download associated with the MS write-up
Implementing Common Desktop Management Scenarios
http://microsoft.com/windowsxp/pro/techinfo/administration/scenarios
-- Roger Abell MS MVP (Security, Windows), MCDBA, MCSE both Associate Expert - Windows XP ExpertZone http://www.microsoft.com/windowsxp/expertzone "halve" <halve27@hotmail.com> wrote in message news:5beb0f9e.0211070517.6a23a58a@posting.google.com... > "Roger Abell [MVP]" <mvpNOSPAM@asu.edu> wrote in message news:<#0SLIiahCHA.1760@tkmsftngp12>... > > What is the full question? > > In a W2k domain you would use group policy, and > > this can send down logon/logoff scripting as well as > > enforce policies sensitive to user/group. > > > > -- > > Roger Abell > > MS MVP (Security, Windows), MCDBA, MCSE both > > Associate Expert - Windows XP ExpertZone > > http://www.microsoft.com/windowsxp/expertzone > > > > "halve" <halve27@hotmail.com> wrote in message > > news:5beb0f9e.0211060707.37b6f7a1@posting.google.com... > > > Shameless bump, does anyone have any ideas? What about if XP pro was > > > logging into a 2000 server? Could we set up some way of > > > restricted/locking the xp machines down through login to a 2000 > > > server? > > > > > > Thanks again > > > > > > Halve > > I would like to setup the xp machines on my network to not beable to > use certain things. Like for a very restricted user maybe they can > only use 1 icon on their desktop and nothing else. No start menu, no > right clicky, or anything, just keep them to that 1 program icon and > thats it. Is it possible to set machines up this way server side? Or > do I need to go to each xp pro machine and set it up individualy some > other way? If I have to go to each machine, can you think of any ways > to acccomplish this task locally? > > So I guess what I am looking for is a way to restrict xp machines so > that the user has little to nothing. I would hope I could do it > server side, but if not any ideas locally? > > Thanks very much > > Halve
- Next message: Gordon C.: "Renaming Owner Profile in Home Edition"
- Previous message: Roger Abell [MVP]: "Re: CSRSS Messenger popup problem"
- In reply to: halve: "Re: Restricting computer privileges by login"
- Next in thread: halve: "Re: Restricting computer privileges by login"
- Reply: halve: "Re: Restricting computer privileges by login"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
