bgcm12
asked on
Displaying a message at logon for a group of users
Hello,
I use AD at my school and want to display a message after log-on to a specific group of users. I have these users in an OU. I know about the group policy that allows a security message to be displayed after ctrl-alt-del - but this effects all computers within the OU and not a subset of users on any computer within the domain (does it not?)
This may be a case of using a log on script for this OU - if this is the simplest solution could somebody point me in the right direction please?
Thanks very much,
Ben
I use AD at my school and want to display a message after log-on to a specific group of users. I have these users in an OU. I know about the group policy that allows a security message to be displayed after ctrl-alt-del - but this effects all computers within the OU and not a subset of users on any computer within the domain (does it not?)
This may be a case of using a log on script for this OU - if this is the simplest solution could somebody point me in the right direction please?
Thanks very much,
Ben
You can filter a GPO to apply to the whole domain, a site, an OU, a group of users/computers or specific users/computers.
I agree a logon script is probably a good way to do this. Add all users that you want the message to be shown to a group. Go on the Properties->Security tab of the GPO object, remove the Authenticated Users group from the ACL list, add the group containing the users and give it Read and Apply GP permissions.
I agree a logon script is probably a good way to do this. Add all users that you want the message to be shown to a group. Go on the Properties->Security tab of the GPO object, remove the Authenticated Users group from the ACL list, add the group containing the users and give it Read and Apply GP permissions.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks all for the input - a simple VB script seems to be the way to go for this one - works a treat.
You can apply a registry change just for that OU that sets the following registry keys
To display a Login message on every machine Go to the following registry key HKEY_LOCAL_MACHINE\SOFTWAR
LegalNoticeCaption <Title of the Message>
LegalNoticeText <Text of the Message>