Creating a user with no login rights
Posted on 2011-03-21
Trying to create a GPO to stop certain users in a group having access to login to the domain.
Domain is mixed 2008/ 2003 @ a 2003 domain level
This is what I have done so far, but its not working.
1) Created a new OU to which I have added the GPO.
2) Added a new group that I have put the external users into, adding that group to the GPO Security Filtering in the GPO Management Console
3) Then in the editor; added the same group to Deny Log On Locally and Deny Log On Through Remote Access: Computer Configuration>Policy’s>Security Settings>Local Policy’s>User Rights Assignment