Solved

How can I allow only admins to log into my servers

Posted on 2008-10-09
9
209 Views
Last Modified: 2010-04-21
How does one allow only administrators/admin group  to logon to the servers?  if so how?  Thanks!
0
Comment
Question by:12string
  • 5
  • 3
9 Comments
 
LVL 20

Expert Comment

by:wolfcamel
ID: 22679830
by default only admins should have the login locally right
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22679835
To allow a user to only log on to some computers: Open the user-properties for the user by using ADUC, click on Account-tab and use the "Log on to"-button. Enter the computer names allowed to logon to.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22679870
on the server you are looking to do this on, define the below policy settings
Local security policy
User rights assignment
Allow logon locally

and add only the admin users you would like to login.
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:12string
ID: 22679882
I only want to allow one administrator account or a group name to be able to log onto the servers.
0
 

Author Comment

by:12string
ID: 22679906
what I mean is only allow users that belong to a certain group be able to log onto the servers.
0
 

Author Comment

by:12string
ID: 22680099
Hello sk_raja_raja is this the path that you mean?

Start Gpedit

Local Computer Policy - Computer Configuration - Windows Settings - Security Settings - Local Policies - Users Rights Assignment - Allow Log on locally

0
 

Author Comment

by:12string
ID: 22680124
If that is the case how does one transfer that template to my other Windows servers?  or is this another question i need to post?
0
 
LVL 18

Accepted Solution

by:
sk_raja_raja earned 500 total points
ID: 22680197
No you can better do this by domain group policy

1.Group all the servers in a OU
2.Create a new group policy and define the "allow log on locally" settings by adding the desired domain group on it.
3.Link this policy only to this OU and enforce it

So, this policy will be applied to all the servers on this OU
0
 

Author Closing Comment

by:12string
ID: 31504716
Thanks that will work!
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Backup and host a VM 6 27
Decommissioning old SMS server 3 73
Requesting private key file from web certificate 4 42
aes256 Ransomware on SBS 2011 13 37
Remote Desktop Protocol or RDP has become an essential tool in many offices. This article will show you how to set up an external IP to point directly to an RDP session. There are many reasons why this is beneficial but perhaps the top reason is con…
Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip Migration Tip #1 – Source Server Health can be found here: http://www.experts-exchang…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question