i want to use my 2 new windows 2003 R2 domain controllers to lock down all my XP Clients. the main problems we are having with them is that the users are filling them up with junk, installing software, chat clients, itunes, download software, casino software etc.
I want to rebuild all the machines, install the sopftware they really need, then try and lock down as much things as possible to prevent them from messing up the machiens! any1 have any ideas on how to do this? are there any major policy rules that i should DEFINATLY put in place straight away?