I have a requirement to block access to the Internet on a PC in our factory. However, I would like the users to be able to access the Internet on a different PC, so this policy must apply to the computer, not the user.
I have used an invalid proxy server address to block Internet access before, but that was based on the user OU, which wouldn't be suitable in this case. I have heard of loopback processing, however this sounds a little complex for what I'm trying to achieve.
All suggestions welcome.