[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

Domain and workstation security

Posted on 2005-05-04
6
Medium Priority
?
412 Views
Last Modified: 2013-12-04
In a 2000 active directory, domain setup, what is the proper way to restirict specific domain users from logging into specific workstations (WS).

Currently, any domain user can log into any WS that is on the domain.  When that user logs into a WS, it creates that profile on the WS (e.g. user.domain.int).

On one machinne, i want to specify which domain users can log into it.  

Thank you
0
Comment
Question by:top_rung
  • 4
  • 2
6 Comments
 
LVL 18

Accepted Solution

by:
luv2smile earned 150 total points
ID: 13934974
For that one machine, just go into the local security policy (control panel, admin tools) and change who can log on locally to the machine.  If a user doesn't have the log on locally right then they won't be able to sit down and log on. Changing the local policy will work if you don't have this policy set for the domain.

Or you can place that computer in a special OU and apply that same policy at the domain level.
0
 
LVL 14

Author Comment

by:top_rung
ID: 13935841
Thank you.   Can you give me specifics on the GP that should be modified/created.  

I assume it is witihn Local Policies>User Rights Assignments ??   ANd also, are there multiple policies that must be adjusted?  I have noticed in the past, that it can take modification of more than one particular policy to achieve one goal.

Thank you very much!

0
 
LVL 14

Author Comment

by:top_rung
ID: 13935854
another note.. under the Log on Locally policy these are listed:

Guest, Administrators, User, Power Users, Backup Operators.


0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 
LVL 14

Author Comment

by:top_rung
ID: 13935917
I removed Guest on the WS, and that did it.   Anything else worth noting???
0
 
LVL 14

Author Comment

by:top_rung
ID: 13936616
Correction: Remove USERS and it prevents other users from loggin in.  Removing "Guests" still allows them to log in.
0
 
LVL 18

Expert Comment

by:luv2smile
ID: 13937573
You have to specifically add the account that you want to allow. Add the actual user account and then you can remove the user group. Then only the specific user that you have added can log on.
0

Featured Post

Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
Many people tend to confuse the function of a virus with the one of adware, this misunderstanding of the basic of what each software is and how it operates causes users and organizations to take the wrong security measures that would protect them ag…
How to fix display issue, screen flickering issue when I plug in power cord to the machine. Before I start explaining the solution lets check out once the issue how it looks like after I connect the power cord. most of you also have faced this…
Free Data Recovery software is an advanced solution from Kernel Tools to recover data and files such as documents, emails, database, media and pictures, etc. It supports recovery from physical & logical drive after a hard disk crash, accidental/inte…
Suggested Courses

590 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question