Solved

Using Active Directory and I want to disallow internet access for some users/pcs.

Posted on 2004-09-24
2
207 Views
Last Modified: 2013-12-04
Hi,

I need to be able to deny internet access for specific users or machines.

I've been told that on their old server (i.e. Pre AD), they could set "internet access" within a user setup and that was it.

They've not been able to find it in AD.

And I'm very new to AD and windows security.

I think I really want a group which is denied access to the internet and I can then add/remove members without having to alter a user directly.

This needs to be centrally administered, as some users are not here (notebook users, WAN users, etc).

I am NOT familiar with windows security model so please be patient.

Regards,

Richard Quadling.
0
Comment
Question by:Richard Quadling
2 Comments
 
LVL 4

Accepted Solution

by:
beem4n earned 500 total points
ID: 12142949
Hi,

first aff all you didnt mention what proxy server are you using - it would be good if you write it

but anyway, if you r using some kind of ISA server (Microsoft proxy), then it has ability to grant
internet to specific users/groups, this way you should create sum group in AD, like Internet Users, and in add in it user account you want to be able surf internet,
and setup your ISA to allow only "Internet Users" group to internet

thats all

ps: if you are using some kind of squid, you can also grant not all users access but by another way
0
 
LVL 4

Expert Comment

by:Milind00
ID: 12225531
You can use GPO and restrict the usage of IE or other softwares for specific users or groups.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Host Profile issue on Esxi 5.5 U3a 6 571
Move Event Log in windows 2012 3 109
Windows Network & Server security audit tools or script ? 2 109
FTP server windows 2008 5 39
The term "Bad USB" is a buzz word that is usually used when talking about attacks on computer systems that involve USB devices. In this article, I will show what possibilities modern windows systems (win8.x and win10) offer to fight these attacks wi…
OfficeMate Freezes on login or does not load after login credentials are input.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question