[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 295
  • Last Modified:

Resrtict a domain user or users in security group so that they can only log onto our portal server?

The senario is that we are school and have issued our parents with a username and a password in order for them to read details from our portal web site. We fear that a pupil will learn his parents password and use it to log onto the domain via an internal domain terminal. We want to restrict the logon so that it can only authenticate to the portal. The portal web pages are secured by domain user authentication. Thanks, Robin
0
RobinAWilson
Asked:
RobinAWilson
  • 3
2 Solutions
 
QBRadCommented:
In Group Policy you could specifically deny them access and logon rights to every server except that one.
0
 
RobinAWilsonAuthor Commented:
If this is the case will they not need access to both a domain controller for authentication and the portal server?
0
 
QBRadCommented:
Yes, dont block access to the domain controller but you dont have to allow them login rights to the domain controller either.

In Group Policy you can state:

Access this computer from the network
and
Allow logon through terminal services

I would set both of these to deny the parents on every server and on the dc just deny the logon part.
0
 
QBRadCommented:
Actually another option, which i dont really like local users, which you could use would be to create local users on the portal server and then you know that that is the ONLY server they could access.
0
 
tigermattCommented:
You could also try setting the "Log On To" setting at the user level, then just enter your portal server in there?
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now