We have an Active Directory Domain running at 2003 native mode. We have a small set of laptops we want to lockdown. We found that we lock everything we need to using group policies and that works as long as the users are in the OU that we have linked the ou to. the problem we are running into however is the following. We only want the Group Policy to apply to them if they are logging into these laptops. If they are logging into their desktops we do not need them to be affected by this policy. Does anyone have any ideas? I have heard of Loopback processing of Group Policies but am not sure how to apply this.
Thanks in advance.