Solved

How can I allow only admins to log into my servers

Posted on 2008-10-09
9
207 Views
Last Modified: 2010-04-21
How does one allow only administrators/admin group  to logon to the servers?  if so how?  Thanks!
0
Comment
Question by:12string
  • 5
  • 3
9 Comments
 
LVL 20

Expert Comment

by:wolfcamel
ID: 22679830
by default only admins should have the login locally right
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22679835
To allow a user to only log on to some computers: Open the user-properties for the user by using ADUC, click on Account-tab and use the "Log on to"-button. Enter the computer names allowed to logon to.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22679870
on the server you are looking to do this on, define the below policy settings
Local security policy
User rights assignment
Allow logon locally

and add only the admin users you would like to login.
0
 

Author Comment

by:12string
ID: 22679882
I only want to allow one administrator account or a group name to be able to log onto the servers.
0
Being driven mad by email signature updates?

Having to make a change to your users’ email signatures, yet again? Feel like your head is going to explode? Rely on an Exclaimer email signature management solution to make the process simple!

 

Author Comment

by:12string
ID: 22679906
what I mean is only allow users that belong to a certain group be able to log onto the servers.
0
 

Author Comment

by:12string
ID: 22680099
Hello sk_raja_raja is this the path that you mean?

Start Gpedit

Local Computer Policy - Computer Configuration - Windows Settings - Security Settings - Local Policies - Users Rights Assignment - Allow Log on locally

0
 

Author Comment

by:12string
ID: 22680124
If that is the case how does one transfer that template to my other Windows servers?  or is this another question i need to post?
0
 
LVL 18

Accepted Solution

by:
sk_raja_raja earned 500 total points
ID: 22680197
No you can better do this by domain group policy

1.Group all the servers in a OU
2.Create a new group policy and define the "allow log on locally" settings by adding the desired domain group on it.
3.Link this policy only to this OU and enforce it

So, this policy will be applied to all the servers on this OU
0
 

Author Closing Comment

by:12string
ID: 31504716
Thanks that will work!
0

Featured Post

[Webinar] Disaster Recovery and Cloud Management

Learn from Unigma and CloudBerry industry veterans which providers are best for certain use cases and how to lower cloud costs, how to grow your Managed Services practice in IaaS clouds, and how to utilize public cloud for Disaster Recovery

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

1. Boot PC and press F10, select storage options and change the compatibility from “AHCI” to “IDE”, save and exit 2. Boot PC and press F12 3. Upon PXE display of searching for DHCP server, press Pause break to obtain MAC address 3. Open Configu…
Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now