fr0x
asked on
Restricted user rights localy
Hi!
I know that it is possible, to make policy to user localy without Active Directory. I have one pc which runs Windows 2000 professional.
I would like to create user: 'tontons' and set some rights restrictions to him.
For example,
#1 Remove Run from Start menu
#2 Remove Search from Start menu
#3 Disable application install feature
and other sort of this kind.
I have dig in Help, but, there is not sad (probably, I just could not found) how to set these things for created user.
I can set these things to current user (administrator), but how to make these settings effect only my chosen user, i dont't know.
What have I done. I have logged as as administrator and run --> mmc (Management Console), and Snaped in Local Computer Policy.
So there are all settings, i have to use, but how to make these settings affect only my choosen user i don't know. Don't forget -- i need to set them localy on PC.
Can you help me!
Thanks in advance
I know that it is possible, to make policy to user localy without Active Directory. I have one pc which runs Windows 2000 professional.
I would like to create user: 'tontons' and set some rights restrictions to him.
For example,
#1 Remove Run from Start menu
#2 Remove Search from Start menu
#3 Disable application install feature
and other sort of this kind.
I have dig in Help, but, there is not sad (probably, I just could not found) how to set these things for created user.
I can set these things to current user (administrator), but how to make these settings effect only my chosen user, i dont't know.
What have I done. I have logged as as administrator and run --> mmc (Management Console), and Snaped in Local Computer Policy.
So there are all settings, i have to use, but how to make these settings affect only my choosen user i don't know. Don't forget -- i need to set them localy on PC.
Can you help me!
Thanks in advance
Jamie McKillop
You can use poledit to set these types of restrictions. Click Start->Run nad type Poledit. You can create entries for each user you want to set restrictiosn on.
ASKER
to jjmck,
i tried to run "Poledit" , but got an error, that it cannot be found.
i tried to run "Poledit" , but got an error, that it cannot be found.
Sorry, it comes with W2K Server. If you have access to a server, it can be found in the winnt directory.
ASKER
I got these files form server 2k. I can create policy file, to my local win 2k professional. But when I log on with user XXX i set restrictions they doesn't affect on this user.
I save this policy to XXX_user.pol but what to do then? Should i put it in folder, or what?
I save this policy to XXX_user.pol but what to do then? Should i put it in folder, or what?
Log in as the user tontons and do exactly what you did in the local computer policy for administrator, log out, and log back in as administrator. Next time Tontons log's in, he will be restricted appropriately.
No need to play with pushing it out remotely if you are only doing this for one user on one machine!
No need to play with pushing it out remotely if you are only doing this for one user on one machine!
ASKER
Satori,
to do exactly what i did in administrator, i cannot do with tontons user, because he has no permission to do these things. Besides, when i do it with administrator these settings affect all users, but i need only 'Tontons'.
to do exactly what i did in administrator, i cannot do with tontons user, because he has no permission to do these things. Besides, when i do it with administrator these settings affect all users, but i need only 'Tontons'.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks!! This is the right answer.