Prevent other Domain users from logging in to my WinXP Pro Computer

I have a WIndows XP Proffesional Computer which is connected to a DOMAIN for my company. I want to prevent other users from the domain to log in to my PC excerpt myself. I do understand you could do it from the local machine but I can't figure a way to block other users on my DOMAIN to log in to my machine.

Thank you
ryanong
ryanongAsked:
Who is Participating?
 
luv2smileConnect With a Mentor Commented:
Change the logon locally policy on your computer

Start- run- type:    gpedit.msc

Then navigate to:

comptuer config- windows settings- security settings- local policies- user rights assignment-

Log on Locally

Remove the domain users and authenticated users group and ADD your domain account here.

NOTE:  If this setting is set via group policy on the server then you won't be able to change it locally
0
 
oBdACommented:
Your network admin will do that for you. If he won't, then it's against your company's policy to prevent other people from logging on to other machines, and it consequently would be against EE's policy to help you circumvent it.
0
 
ryanongAuthor Commented:
Thanks oBdA..my company is a small company with around ten computers on our network. We have actually hired some outside contractor to actually set it up for us...we paid them and they've left. Now I am in the accounts section ...but since I have a fair knowledge about computers...my boss decide to let me take charge of the network...Iam still learning new things about computers while looking after the network...Im not that type of computer Guru but an average IT person....so it is my task to prevent people to log in to my computer because of the many confidential accounts documents I keep in there...

So please do help to assist me on how to prevent other domain users from logging in to my machine....

Thanks
ryanong
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 
oBdACommented:
Now, preventing access to confidential files is something completely else. That can/should be done with NTFS permissions.
You should have a home drive on a server that's backed up on a regular basis. Permissions to that drive should be set in such a way that only your account (and the account used for backup!) have access. In that case, it doesn't matter who will logon to "your" computer--he won't be able to access your files.
The same is of course valid if you store files locally; you can set permissions so that only your account can access these files. By default, the "My Documents" folder should already be protected. Storing documents locally involves that you'll have to manually backup your files. In addition, locally stored documents aren't really secure if other people have been assigned local administrative permissions on the machine.
0
 
luv2smileCommented:
I agree with oBda as far as preventing access to secure files.  Even if someone can log onto your computer, if you have properly setup permissions, then they won't be able to access critical files.  The idea of storing those files on the sever is one that I also agree with.  
0
 
Rich RumbleSecurity SamuraiCommented:
Don't forget the firewall, turn on the xp firewall to prevent them from accessing your harddrive, the logon locally will also prevent them from trying to use remotedesktop, but so will the firewall ;) By default the firewall will block all incoming packets with no exceptions, all out going packets/sessions are allowed.
-rich
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.