Manage Multiple User Rights

Posted on 2003-03-25
Medium Priority
Last Modified: 2010-04-13

HIPPA (bad word, as many may know)

Anyhow I am having to completely reengineer our network to conform to the government HIPPA standards and am fairly new to WIN2K ADS, etc.  One problem I am trying to over come is the ability to manage multiple user rights instead of making the changes for each individual user.  In my old NT world it was fairly simple.  You just selected all of the users that you wanted to edit, or you used the ‘select user’ option from the groups’ menu and then changed the settings (ie. Logon script, home directory, logon hours, logon workstations, forced the users to change their passwords at next logon, etc)

I know that logon scripts and home directories are now handled in group policies, I am getting a grasp on that.  However, I am needing to limit logon workstations and hours to users of specific groups and I prefer to not go through 250 users one at a time to make this change.

Does anyone know how to make some of these ‘other’ user rights in a group setting?

J. Newman
Question by:jimtxas
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2

Accepted Solution

jimshoe earned 150 total points
ID: 8204522
Here is a article describing what your trying to do.  This enables you to change either users or groups logon hours.

HOW TO: Limit User Logon Time in a Domain in Windows 2000

Author Comment

ID: 8204575

How about 'log on to' workstations and marking all passwords for the group to be changed at next logon...

Expert Comment

ID: 8205082
Here is a batch file that will take a user list and change the password needs to be changed at next logon but needs the cusrmgr from the resource kit.

@echo off
if {%1}=={}(echo usage: fixpass user-list) & (goto :END)
if not exist %1 (echo %1 not found) & (goto :END)
for /f "eol=; Tokens=*" %%i in (%1) do cusrmgr -u %%i +s MustChangePassword

You'll have to use the net use to get a list of users and edit it to remove certain accounts obviously.

More information on cusrmgr see the resource kit.

Not sure how you'd go about the workstation restriction.  How do you have it setup now?  User only able to log on to one workstation?  

Expert Comment

ID: 8595706
This question is still open and getting old. If any of the comment(s) above helped you please accept it as an answer or split the points who ever helped you in this question. Your attention in finalising this question is very much appreciated. Thanks in advance,


- If you would like to close this question and have your points refunded, please post a question in community support area on http://www.experts-exchange.com/Community_Support/ giving the address of this question. Thank you      


Cleanup Volunteer


Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Introducing Priority Question, our latest feature.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question