• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1132
  • Last Modified:

How Can I Restrict Login to Workstations by Group?

hi,

school environment, teacher and student use computers, win XP for workstations, win 2003 server for the AD setup, teacher and students in their own groups and OUs.

how can i use GPO to not allow students from logining into teacher workstations?

thanks.

-m
0
ysdadmin
Asked:
ysdadmin
1 Solution
 
Radar07Commented:
Place all teacher computers into one OU then use GPO to "Deny log on locally" to the student security group under:
Computer Configuration | Windows Settings | Security Settings | Local Policies | User Rights Assignment

Apply this policy to the teacher computer OU and your problem shoudl be solved.
0
 
bsharathCommented:
Restrict you mean accessing C$ shares or accessing them through console or remote desktop.iF we are talking about less machines then
For Remote access
 Right-click My computer>Properties>Remote>Select remote users. Delete any user group exist here add only users that you want
or
*Start>Settings>Control Panel>Windows Firewall.
                   *Enable firewall. Then click exceptions. Check the box of Remote Desktop. Double-clikc Remote Desktop, check the box of TCP 3389.
                  *Click Change Scope, then click custom list. Now type here the IP address whic is only allowed to connect to that PC. Apply and exit.

If they are less users then you can add the machine names to the users in Account > Log on to and the machine names.So that only machines that the user has the names will be able to access the computer.

Hope this helps...
0

Featured Post

Get quick recovery of individual SharePoint items

Free tool – Veeam Explorer for Microsoft SharePoint, enables fast, easy restores of SharePoint sites, documents, libraries and lists — all with no agents to manage and no additional licenses to buy.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now