• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 159
  • Last Modified:

Applying security locally, no AD, no servers...

Hi gurus!

I'm completely lost with all these security issues in Win2K.
Well, the problem is: I have a standalone Win2K Professional workstation, no servers, no AD, no DNS.
I need just apply more restriction to certain user or group (Users). Locally.

I've read all that Microsoft HOWTOs, but still frustrating: I don't understand the key trick - how to apply those settings I play with in Group Policy or Security snap-ins to the certain user or group???
What I have now is the settings (either Computer Configuration or User Configuration once have been changed) affect all users even from different groups. Seems oddly. How to isolate it? I need a normal admin and a tightly restricted user...

I suspect maybe I have to apply the Security Template or policy during logon, in the script using secedit? I don't quite understand the role of database here too.....
But in WinNT that was working somehow without logon script.
Or where to get a simple step-by-step instruction how to succeed with this trivial task?

Exhausted and disappointed.
Need your guide.
  • 2
1 Solution
With a single workstation you can only use Local Security Policies, ther eis no way that I am aware of to have multiple policies in this situation.  You can however prevent the policies from affecting the administrator: http://support.microsoft.com/default.aspx?scid=kb;en-us;293655

The only security that you can apply based on local groups is NTFS rights and Registry Key rights.
SeropAuthor Commented:
Thanks, it works!
Glad I could help.  MSGeek.

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now