Resrtict a domain user or users in security group so that they can only log onto our portal server?

Posted on 2007-09-28
Last Modified: 2013-11-30
The senario is that we are school and have issued our parents with a username and a password in order for them to read details from our portal web site. We fear that a pupil will learn his parents password and use it to log onto the domain via an internal domain terminal. We want to restrict the logon so that it can only authenticate to the portal. The portal web pages are secured by domain user authentication. Thanks, Robin
Question by:RobinAWilson
    LVL 9

    Expert Comment

    In Group Policy you could specifically deny them access and logon rights to every server except that one.

    Author Comment

    If this is the case will they not need access to both a domain controller for authentication and the portal server?
    LVL 9

    Expert Comment

    Yes, dont block access to the domain controller but you dont have to allow them login rights to the domain controller either.

    In Group Policy you can state:

    Access this computer from the network
    Allow logon through terminal services

    I would set both of these to deny the parents on every server and on the dc just deny the logon part.
    LVL 9

    Accepted Solution

    Actually another option, which i dont really like local users, which you could use would be to create local users on the portal server and then you know that that is the ONLY server they could access.
    LVL 58

    Assisted Solution

    You could also try setting the "Log On To" setting at the user level, then just enter your portal server in there?

    Featured Post

    Highfive Gives IT Their Time Back

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Join & Write a Comment

    ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
    Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now