Solved

Restrict user logon access to computers

Posted on 2006-10-19
5
263 Views
Last Modified: 2010-04-18
Hello there,

I'm running a network based on Windows Server 2003 SP1 Enterprise Edition. My question is whether it is possible to restrict logon access to the users to specific computers, so that they cannot logon to all computers in the network - locally, that is.
I know that it is possible to go to each user's object in AD and specify the computers in 'Log On To...", but I was wondering whether there is a 'batch' way to do this through group policy or some script.
Thanks in advance.
0
Comment
Question by:ntossiou
  • 2
5 Comments
 
LVL 26

Accepted Solution

by:
Pber earned 125 total points
ID: 17765550
You can do limited batch processing from from ADUC.

Just select multiple users with ithe ADUC console (CTRL+Click) or (SHIFT+Click)

The right click the highlighted users and select properties then just select Account Computer Restrictions and Log On to.

This will only work if the group of users is restricted to the same machines.

Other than that, it can be scripted.
0
 

Author Comment

by:ntossiou
ID: 17765652
Pber,

Thanks for the quick reply. Any example scripts you could provide?
0
 
LVL 26

Expert Comment

by:Pber
ID: 17765692
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question