Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

GPO to deny Internet access for computer rather than user

Posted on 2008-06-16
3
Medium Priority
?
577 Views
Last Modified: 2012-05-05
Hi.

I have a requirement to block access to the Internet on a PC in our factory.  However, I would like the users to be able to access the Internet on a different PC, so this policy must apply to the computer, not the user.

I have used an invalid proxy server address to block Internet access before, but that was based on the user OU, which wouldn't be suitable in this case.  I have heard of loopback processing, however this sounds a little complex for what I'm trying to achieve.

All suggestions welcome.

Thank you.
0
Comment
Question by:geoff_austin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 19

Expert Comment

by:PeteJThomas
ID: 21793662
Well, I'm not sure if there's a better way to do it, but you could run a startup script in the Computer Config section of a GPO, and use the script to turn on the proxy (with the wrong settings of course).

Check this out - http://www.petri.co.il/forums/showthread.php?t=8699

It explains how to create such a script...

Hope that helps! :)

Pete
0
 

Author Comment

by:geoff_austin
ID: 21794698
Thanks for the reply Pete  :->

That looks like it would do the job, but it sounds a bit complex for what I'm trying to achieve!

Is it possible to use a GPO for content filtering?  If I could limit the websites that could be accessed on the computer that would be a good solution.
0
 

Accepted Solution

by:
geoff_austin earned 0 total points
ID: 21794904
I have found a good solution here:-
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Windows/XP/Q_22929261.html

Specifically "Computer Config>Windows Settings>Security Setttings>Software Restrictions>Security Levels>Disallowed....."

At the moment they don't need to use IE on that computer, so this works for now.
0

Featured Post

Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We have adopted the strategy to use Computers in Student Labs as the bulletin boards. The same target can be achieved by using a Login Notice feature in Group policy but it’s not as attractive as graphical wallpapers with message which grabs the att…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
In response to a need for security and privacy, and to continue fostering an environment members can turn to for support, solutions, and education, Experts Exchange has created anonymous question capabilities. This new feature is available to our Pr…

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question