I want several of my domain workstations to only be able to be logged into by a certain group. I am not sure how to make this happen. I am thinking I can use a GPO "Restricted Groups" to make this happen but am not sure how to keep regular domain users out. I do not want to do this at the local profile/user level the authorized users need their network access. Would I have to place the workstation into its own container and then apply the restricted groups policy to that container, would that keep those that are not part of the group out?
Examples: In other words I have a domain workstation that I only want to be able to be logged onto by those that are part of the security group called "Board room users" and exclude those that are not part of that group or of course Domain Admins.
All assistance is appreciated. Thank you!