cdmt00
asked on
Restrict Logon to specified Computers
I am running Windows 2003 Terminal Server. I am looking to restrict OU's to only log onto specified computers. You can do this in Active Directory by Selecting LogonTo in the user properties. Is there a way to do this as a group policy?
Do you want to prevent certain users logging on to certain terminal servers? If this is the case you can use the restricted groups group policy to control the membership of the Remote Desktop Users group on each terminal server.
ASKER
I want to create a group policy that allows all users in that OU to log on only to server1 and not server2. I know how to do this per user but not in group policy. I hope that clarify things.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
saineolai,
This can be set if you go to Active Directory Users and Computer, right click user account, select properties go to Account tab, click "Log on to.." button and specify names of computers. I am looking to set this in group policy. your link told me how to allow remote desktop but not to specific servers.
This can be set if you go to Active Directory Users and Computer, right click user account, select properties go to Account tab, click "Log on to.." button and specify names of computers. I am looking to set this in group policy. your link told me how to allow remote desktop but not to specific servers.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
This seems like more hastle than just setting the permission on the user properties
Thanks for your help.
Thanks for your help.