Re: Limiting Access
From: Doug Knox MS-MVP (dknox_at_mvps.org)
Date: 11/28/03
- Next message: Kevin K: "Re: Zone Alarm"
- Previous message: Roger Abell: "Re: Daily rebooting of computer"
- In reply to: Jeff: "Limiting Access"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 27 Nov 2003 21:04:25 -0500
See www.dougknox.com, Win XP Tips, Advanced Registry Editing for a method of
modifying a user's portion of the Registry without actually having to log on
to that user's desktop.
You need to look in that user's portion of the Registry in
Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
Right click in the right pane, select New, DWord value and name it
RestrictRun Double click the value you just created and set it to 1.
Next, right click on the Explorer subkey, select New, Key and name it
RestrictRun. Highlight the key you just created and right click in the
right pane. Select New, DWord value and name it 1. Double click this new
value and enter in the executable name (i.e. NOTEPAD.EXE) that you want to
allow the user to run. Unload the user's hive (if you used the technique
from my web site). Now, if you log on to that user's account, they
shouldn't be able to run any application but that one.
Note: This does not stop them from right clicking things like the Desktop,
My Computer and etc and changing settings. It only prevents them from
running applications from the Start Menu or the Run dialog. It also will
not prevent them from running programs from the Command Prompt. For
additional security, see www.dougknox.com, Win XP Utilities, Windows XP
Security Console. Version 2 will be released soon, and will include the
features needed to implement the process described above, in the licensed
version.
-- Doug Knox, MS-MVP Windows XP/ Windows Smart Display Win 95/98/Me/XP Tweaks and Fixes http://www.dougknox.com -------------------------------- Associate Expert ExpertZone - http://www.microsoft.com/windowsxp/expertzone -------------------------------- Please reply only to the newsgroup so all may benefit. Unsolicited e-mail is not answered. "Jeff" <jeff@mktest.com> wrote in message news:uiYDZfQtDHA.700@TK2MSFTNGP11.phx.gbl... > Hi, > > I have been asked to limit the access to a windows XP user account so > the user can run only one application, when finished the user can not > perform any other activity but to log off or shut the system down. > > What would be the simplest and quickest method to achieve this? > > Many thanks, > > Jeff. > >
- Next message: Kevin K: "Re: Zone Alarm"
- Previous message: Roger Abell: "Re: Daily rebooting of computer"
- In reply to: Jeff: "Limiting Access"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
