bmquintas
asked on
W2000 Domain with XP pro and Windows 98 - Best practices
Hi all, i'd like you to point me in some directions regarding the following:
A school with 7 servers W2k (2 DC+DNS, 1 DHCP, 1 ISA2000+Exchange2000, 3 File and Print Servers) , none of the servers has backup hardware like tapes.
Workstations, 50 W98, 75 WinXP pro
I would like to apply group policies, which is no problem with Windows XP Pro, but regarding the W98 i really don't know how to handle them.
I'd like to restrict access to the w98 definitions like control panel, disable command line, disable access to the network settings, disable software instalation and so on....
The users can be using whatever machine is available (w98 ou XP) , i'd like to have drives mapped regardless of logging in w98 or xp.
I really want to lock down the w98's.
I also need a good strategy to backup all the servers.
Thanks
Bruno
A school with 7 servers W2k (2 DC+DNS, 1 DHCP, 1 ISA2000+Exchange2000, 3 File and Print Servers) , none of the servers has backup hardware like tapes.
Workstations, 50 W98, 75 WinXP pro
I would like to apply group policies, which is no problem with Windows XP Pro, but regarding the W98 i really don't know how to handle them.
I'd like to restrict access to the w98 definitions like control panel, disable command line, disable access to the network settings, disable software instalation and so on....
The users can be using whatever machine is available (w98 ou XP) , i'd like to have drives mapped regardless of logging in w98 or xp.
I really want to lock down the w98's.
I also need a good strategy to backup all the servers.
Thanks
Bruno
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Yes...poledit can be used. I kind of forgot about that. I don't know you'll have the same flexibility as WinLock. I know that for what I wanted (at the school I manage) poledit was insufficient, but for your purposes, it might just do the trick. Good link for poledit info: http://www.zisman.ca/poledit/
As far as the drives go...I would still use logon scripts for all of the machines. The reason is that it will make the transition easier if a user ever moves from 98 to XP machines. If there will never be any users that move between differing machine types, then you can easily implement drive mapping with group policy. I have found the approach a little overkill for the school I maintain. If you ever need to add or make changes, they can be more quickly implemented if you use logon scripts, than using group policy.
Group policy is great...but the more you add to it, the more quirky it can become. If I can do something without group policy, I usually try to. But in theory, it won't hurt to do it either way.
James
As far as the drives go...I would still use logon scripts for all of the machines. The reason is that it will make the transition easier if a user ever moves from 98 to XP machines. If there will never be any users that move between differing machine types, then you can easily implement drive mapping with group policy. I have found the approach a little overkill for the school I maintain. If you ever need to add or make changes, they can be more quickly implemented if you use logon scripts, than using group policy.
Group policy is great...but the more you add to it, the more quirky it can become. If I can do something without group policy, I usually try to. But in theory, it won't hurt to do it either way.
James
ASKER
Thanks for helping James.
Bruno, there is a new server-based version of WinLock available. I paid $500 (k-12 pricing) and got something like 7 products from Visionsoft: www.schoolsdownload.com . You still have to deploy the WinLock7 client on each W98 machine - or you can do it with a login script - but all of the settings are centralized by account on the server. I use Group Policy for our XP machines.
I also use an imaging product to duplicate settings out to each of the workstations - Norton Ghost is a popular one, but I use Acronis.
Pam
(Director of Technology for a K-8 school district)
I also use an imaging product to duplicate settings out to each of the workstations - Norton Ghost is a popular one, but I use Acronis.
Pam
(Director of Technology for a K-8 school district)
ASKER
Thanks for the info i'll get a look into it.
ASKER
With xp , i don't need to assign logon scripts to users, i'll assign them to OU's through GP, do i need do assign them to individual users to get the drives mapped with 98?