Solved

How to apply policies to specific users on a Member Server.

Posted on 2004-08-10
2
199 Views
Last Modified: 2010-04-14
I have a Win2k standalone server that is also running Terminal Server.  There are certain users in which I need to lock down their desktops once logged on via Terminal Server.  How do you provide policies to CERTAIN users on a server that is NOT part of a domain?  I was hoping to get a "standard" procedure, as opposed to registry "hacks" or "tricks".  

Thanks very much!!
0
Comment
Question by:tsavage
2 Comments
 
LVL 14

Accepted Solution

by:
dlwyatt82 earned 250 total points
ID: 11767926
As far as group policy is concerned, you don't. There is only a single Group Policy Object to work with (the Local object), so the normal procedure of filtering GPOs by ACL does not apply.

You will need to configure these settings / policies in the registry in some fashion, perhaps by creating a login script for the users whose desktops you wish to lock down.
0
 
LVL 9

Expert Comment

by:fixnix
ID: 11783853
If you're not using group policies for anything and don't plan to in the future, you can use the very ugly hack of setting a locked down group policy then denying read access to it for the non-locked down users.  Just be careful that the changes aren't updated immediately or you'll lock yourself down before you can deny yourself read permissions to the policy.  Hopefully there's a better way, but I remember seeing the above concept a while back to have admins unaffected by group policy.  I don't have the url handy that had very detailed instructions on doing this.  If you want to go this route and need more specific info, I can do some digging.
0

Featured Post

Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Networking: Change of existing Domain Controller (NT to win 2008) 6 936
Remote Desktop Software 6 446
Terminal 2000 connection RDP 5 137
Install Window 2012 Domain on 9 125
NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Edureka is one of the fastest growing and most effective online learning sites.  We are here to help you succeed.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now