Solved

How to apply policies to specific users on a Member Server.

Posted on 2004-08-10
2
201 Views
Last Modified: 2010-04-14
I have a Win2k standalone server that is also running Terminal Server.  There are certain users in which I need to lock down their desktops once logged on via Terminal Server.  How do you provide policies to CERTAIN users on a server that is NOT part of a domain?  I was hoping to get a "standard" procedure, as opposed to registry "hacks" or "tricks".  

Thanks very much!!
0
Comment
Question by:tsavage
2 Comments
 
LVL 14

Accepted Solution

by:
dlwyatt82 earned 250 total points
ID: 11767926
As far as group policy is concerned, you don't. There is only a single Group Policy Object to work with (the Local object), so the normal procedure of filtering GPOs by ACL does not apply.

You will need to configure these settings / policies in the registry in some fashion, perhaps by creating a login script for the users whose desktops you wish to lock down.
0
 
LVL 9

Expert Comment

by:fixnix
ID: 11783853
If you're not using group policies for anything and don't plan to in the future, you can use the very ugly hack of setting a locked down group policy then denying read access to it for the non-locked down users.  Just be careful that the changes aren't updated immediately or you'll lock yourself down before you can deny yourself read permissions to the policy.  Hopefully there's a better way, but I remember seeing the above concept a while back to have admins unaffected by group policy.  I don't have the url handy that had very detailed instructions on doing this.  If you want to go this route and need more specific info, I can do some digging.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory

789 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question