Restrict user logon access to computers
Posted on 2006-10-19
I'm running a network based on Windows Server 2003 SP1 Enterprise Edition. My question is whether it is possible to restrict logon access to the users to specific computers, so that they cannot logon to all computers in the network - locally, that is.
I know that it is possible to go to each user's object in AD and specify the computers in 'Log On To...", but I was wondering whether there is a 'batch' way to do this through group policy or some script.
Thanks in advance.