Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Restrict access to Removable drives for XP users in Windows 2008 server domain

Posted on 2008-10-11
5
Medium Priority
?
1,167 Views
Last Modified: 2012-05-05
I have a Windows 2008 domain controller. All the clients are Windows XP. Now I have to restrict their access to all removable drives (USB/CD) and if possible also restrict them from browsing C drive as much as possible.
I tried to use group policy but the option for "Denying access to all removable drives" is only valid for Vista or later, how can I restrict XP client then ?

Please assist
0
Comment
Question by:Johnny_Nguyen
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 7

Expert Comment

by:dineesh
ID: 22693847
hi,

remove the rights for all users on the files c:\windows\inf\usbstor.inf & c:\windows\inf\usbstor.pnf. if you could do that by a vb script then include that into the  logon script.

regards,
dinesh
0
 
LVL 1

Author Comment

by:Johnny_Nguyen
ID: 22694005
You mean removing security access on those 2 paticular files using logon script ? I don't how that can be possible if the users are restricted users.

And does the above action restrict CDROM access to ?
0
 
LVL 15

Expert Comment

by:plimpias
ID: 22697843
Symantec endpoint does this, hopefully you have this. Otherwise you are going to need to tweak a few things as XP is not built to do this.
0
 
LVL 31

Accepted Solution

by:
Henrik Johansson earned 2000 total points
ID: 22698800
Configure the following policy settings in a GPO:
User Configuration\Administrative Templates\Windows Components\Windows Explorer
* Hide these specified drives in My Computer
* Prevent access to drives from My Computer

See link about howto add your own options to the drive policies
http://support.microsoft.com/kb/231289
0
 
LVL 1

Author Closing Comment

by:Johnny_Nguyen
ID: 31505300
Thanks, Henjoh09, that's the Policy I need !
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
Here's a look at newsworthy articles and community happenings during the last month.
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

704 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question