Avatar of rbudj
rbudj
Flag for United States of America asked on

Allow only one domain user to login to workstation

I was asked this question, and to my knowledge the answer is no.

On a windows 7 computer connected to a server 2008 domain, is it possible to restrict access to this computer to one single user?

My guess is that anyone with a username in active directory can login but they want to know if regardless of permissions for different users, can logon to this computer be limited to a single user?
Windows Server 2008Active DirectoryWindows 7

Avatar of undefined
Last Comment
rbudj

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
amarpal0102

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
SOLUTION
Kenmcse1969

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
rbudj

ASKER
Ok thanks for the info. I will test this and post back.
Kenmcse1969

I didn't mention this but it goes without saying....leave at least one Administrator in the Admin Group if your not going to make the user an Admin We always leave Domain Admins in the Admin group as a backdoor regardless of how we restrict indivdual user access to the PC.
rbudj

ASKER
Are you talking about the local policy?
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
harryhelp

I think so - the Domain Admins group should always be in the local Administrator group - but you can always just do one domain user or send out a group policy to add more groups to that group.
Kenmcse1969

Here is a screenshot of the management screen showing exactly how my PC looks. Of course my personal acccounts are in the Admin Group. Some organizations put the users there and some only put them in the users or power users group.


Capture.JPG
SOLUTION
Log in to continue reading
Log In
Sign up - Free for 7 days
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
rbudj

ASKER
Im still working on this. Whoever is rushing, please be patient
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
rbudj

ASKER
I am setting ths up in my test environment now. I will have more soon.
rbudj

ASKER
Having some issues. Still working on this.
rbudj

ASKER
Almost have my network rebuilt for testing. Sorry for the delay.
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck