GPO to deny Internet access for computer rather than user

Hi.

I have a requirement to block access to the Internet on a PC in our factory.  However, I would like the users to be able to access the Internet on a different PC, so this policy must apply to the computer, not the user.

I have used an invalid proxy server address to block Internet access before, but that was based on the user OU, which wouldn't be suitable in this case.  I have heard of loopback processing, however this sounds a little complex for what I'm trying to achieve.

All suggestions welcome.

Thank you.
geoff_austinAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
geoff_austinConnect With a Mentor Author Commented:
I have found a good solution here:-
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Windows/XP/Q_22929261.html

Specifically "Computer Config>Windows Settings>Security Setttings>Software Restrictions>Security Levels>Disallowed....."

At the moment they don't need to use IE on that computer, so this works for now.
0
 
PeteJThomasCommented:
Well, I'm not sure if there's a better way to do it, but you could run a startup script in the Computer Config section of a GPO, and use the script to turn on the proxy (with the wrong settings of course).

Check this out - http://www.petri.co.il/forums/showthread.php?t=8699

It explains how to create such a script...

Hope that helps! :)

Pete
0
 
geoff_austinAuthor Commented:
Thanks for the reply Pete  :->

That looks like it would do the job, but it sounds a bit complex for what I'm trying to achieve!

Is it possible to use a GPO for content filtering?  If I could limit the websites that could be accessed on the computer that would be a good solution.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.