Re: Locking Down workstation
- From: "Peter" <it01@xxxxxxxxxxxxxxxxxxx>
- Date: 23 Sep 2006 01:17:50 -0700
Hi
Presumably you know how to set up Group Policies to run from your
server. There's lots of info out there, including the article at
http://www.windowsecurity.com/articles/Windows-XP-Group-Policy-Windows-2000-Domain-Part1.html
Local Admin or even Power User access is dangerous in the wrong hands -
as you've discovered... and as I've also discovered!
I've never fiddled with running gpedit.msc to permit users to add
printers but it should work. The policies give you quite a bit of
control
Good luck however. Once users have full control of their computer they
are reluctant to give it up.
Peter
nesdog wrote:
Hi,
I've got 75 users with laptops that log onto our domain. They have always
been given local Admin rights. Now we want to lock them down, but still allow
them to install local printers, or config home wireless. But nothing else!
(including adding browsers, apps, etc! )
Will the local Users group give them this access? When I tested it, it
appeared that only Add Network Printer was available, not the local one.
Power User seemed to get the same settings.
We had one of these machines infect our network courtesy of a user who had
too much Admin rights so any help would be appreciated.
Thanks,
Sheldon
.
- Prev by Date: Group Policy to prevent File Association Dialog?
- Next by Date: Re: Power Users can enable/disable devices in Device manager
- Previous by thread: Re: Locking Down workstation
- Next by thread: 5 Ways to Speed Up Your Computer's Performance
- Index(es):
Relevant Pages
|
Loading
