Hi friends !
I am running an internet café with 20 PCs in Workgroup environment. All are installed with Windows 2000 Professional. I am running two different internet lines from different ISPs for internet availability assurance.
Now, when I use only Administrator account and clients use that account for internet then sometimes they install software i.e. Orbit Downloader, Youtube Downloader and other utilities that I do NOT want.
YES&I made another account with limited rights and give them that account to use, so in that condition they can NOT install anything. BUT&
Sometimes when they are working with and internet is not ok, I want to change TCP/IP settings to use another network (as I told you that I am using two lines). For that I log off from Visitor account and log on from Administrator account and change settings and log off Administrator account and log on back with Visitor account.
All these stuff take time and clients are also annoyed.
I want to know how I can set rights through Group Membership or Group Policy (in Windows 2000 Professional) so that:
1. Visitor account MUST have at least the rights to change TCP/IP settings, Disable/Enable Local Area Connection and to change System Date and Time BUT they must NOT have the right to install or uninstall any software.