<div>
refer <a href="http://www.tech-faq.com/how-to-delegate-administrator-privileges-in-active-directory.html" rel="ugc">http://www.tech-faq.com/how-to-delegate-administrator-privileges-in-active-directory.html</a>&nbsp;for rights delegation
</div>


refer http://www.tech-faq.com/how-to-delegate-administrator-privileges-in-active-directory.html [http://www.tech-faq.com/how-to-delegate-administrator-privileges-in-active-directory.html] for rights delegation

<div>
hi muzafar 13,<br />
<br />
thanks for ur response. i did the delegation but my query is,<br />
the should able to add the client to the server. but he should not able to log in &nbsp;into the server. how to restrict a user from log in into the server.
</div>


hi muzafar 13,

thanks for ur response. i did the delegation but my query is,
the should able to add the client to the server. but he should not able to log in  into the server. how to restrict a user from log in into the server.

<div>
i need more information. because i didnt get exact information. i want to block all the users except some ADMIN persons. please provide some help to restrict all the users login into Domain controller.
</div>


i need more information. because i didnt get exact information. i want to block all the users except some ADMIN persons. please provide some help to restrict all the users login into Domain controller.

<div>
<div class="content wysiwyg-content">
hi<br />
we have windows server 2003. &nbsp;i want to restrict users to login to the server.<br />
<br />
i want to create a user like, he should add client to domain, change the date and time, change network properties. but he should not get any administrator rights. and he should be able to login in to the server.<br />
<br />
please give me some guidence to create group policies to give this type of policies.
</div>
</div>


hi
we have windows server 2003.  i want to restrict users to login to the server.

i want to create a user like, he should add client to domain, change the date and time, change network properties. but he should not get any administrator rights. and he should be able to login in to the server.

please give me some guidence to create group policies to give this type of policies.

restrict users to login to the domain

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).

Windows Server 2003

Windows 2000 is an operating system for use on both client and server computers. It is the successor to Windows NT 4.0, and is the last version of Microsoft Windows to display the "Windows NT" designation. Four editions of Windows 2000 were released (Professional, Server, Advanced Server, and Datacenter Server) that shared a core set of features, including many system utilities such as the Microsoft Management Console. All versions of the operating system support NTFS 3.0, Encrypting File System, as well as basic and dynamic disk storage. The Windows 2000 Server family includes support for Active Directory services, Distributed File System and fault-redundant storage volumes.