Default Domian Group Policy Objects
Posted on 2006-11-09
I have question from a MS 290 paper that im not clear on
You have a network that runs all win20003 computers.
Three of the servers are Terminal Servers
The company hires 20 temporary staff, and you create an account for each one.
You need to prevent the temp staff from logging onto the Terminal servers.
The answer says. On the Terminal services profile tab for the user account, disable the option to log onto a terminal server.
I understand that. But I do not get why the following will not work
"Modify the Default Domain Group Policy Object (GPO). You should configure a computer level policy to prevent the temporary staff from connecting to the terminal servers"
Why would that not work......If it says modify the policy to prevent the temp staff from getting access, surely that is what you wanted