I've just started using GPOs on AD containers in Windows 2003 server, and I need some help.
Previously, I have run log on scripts from NETLOGON. Each user had his or her own script that mapped drives and printers etc.
Is there any advantage to using GPO for log on scripts instead?
Next question: Is there a GPO that will log off a user after a certain amount of inactivity (ie user is away from keyboard?)
Finally, can I use GPO to control who logs on to which workstation? I want to restrict one group of users from logging on to certain workstations.
Please advise and show how :-)