Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Using Active Directory and I want to disallow internet access for some users/pcs.

Posted on 2004-09-24
2
Medium Priority
?
230 Views
Last Modified: 2013-12-04
Hi,

I need to be able to deny internet access for specific users or machines.

I've been told that on their old server (i.e. Pre AD), they could set "internet access" within a user setup and that was it.

They've not been able to find it in AD.

And I'm very new to AD and windows security.

I think I really want a group which is denied access to the internet and I can then add/remove members without having to alter a user directly.

This needs to be centrally administered, as some users are not here (notebook users, WAN users, etc).

I am NOT familiar with windows security model so please be patient.

Regards,

Richard Quadling.
0
Comment
Question by:Richard Quadling
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 4

Accepted Solution

by:
beem4n earned 2000 total points
ID: 12142949
Hi,

first aff all you didnt mention what proxy server are you using - it would be good if you write it

but anyway, if you r using some kind of ISA server (Microsoft proxy), then it has ability to grant
internet to specific users/groups, this way you should create sum group in AD, like Internet Users, and in add in it user account you want to be able surf internet,
and setup your ISA to allow only "Internet Users" group to internet

thats all

ps: if you are using some kind of squid, you can also grant not all users access but by another way
0
 
LVL 4

Expert Comment

by:Milind00
ID: 12225531
You can use GPO and restrict the usage of IE or other softwares for specific users or groups.
0

Featured Post

Q2 2017 - Latest Malware & Internet Attacks

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out our latest Quarterly Internet Security Report!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is a guide to the following problem (not exclusive but here) on Windows: Users need our support and we supporters often use global administrative accounts to do this. Using these accounts safely is a real challenge. Any admin who takes se…
Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
In this video, Percona Solution Engineer Dimitri Vanoverbeke discusses why you want to use at least three nodes in a database cluster. To discuss how Percona Consulting can help with your design and architecture needs for your database and infras…
Suggested Courses

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question