Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Restrictions on OU level in Windows 2003

Posted on 2004-08-24
4
Medium Priority
?
187 Views
Last Modified: 2010-05-18
hi,

I have windows2003 domain i just installed. I just wana know that , is it possible that if OU A, OU B and OU C are created , in OU A & B there are Users and in OU C there are computers. I want to put restrictions on the users of OU A so that even if any user of OU A physically wants to login from the computers of OU C then he/she should have access denied while the users of OU B should be able to login.

So is it possible in OU level to restrict users of one OU to not be able to even physically login to the computers of another OU?
0
Comment
Question by:amirkasalam
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 16

Accepted Solution

by:
mdiglio earned 500 total points
ID: 11881667
Hello,

I don't think AD is dynamic enough to do this based upon an OU.

What you can do is create a new security group called 'UsersB'
highlight all users in ou B and add them to the 'UsersB' group.

Now in the Group Policy for OU C expand
coputer configuration >> windows settings >> security sttings >>
local policies>>user rights assignment >> 
double click the 'logon locally' policy and add the newly created group,
and all other groups\users you will need to administer these computers

When you click browse to add this group you will have to change the 'object types'
to look for Groups as well

This will allow only the users specified to logon to the computers in the OU

Hope this works for you!
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Files go missing when using DFS (Distributed File System) Replication and how to recover them and fix it.
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
In this video, Percona Solution Engineer Rick Golba discuss how (and why) you implement high availability in a database environment. To discuss how Percona Consulting can help with your design and architecture needs for your database and infrastr…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question