?
Solved

Using GPO to restrict a domain USERID to a specific set of machines

Posted on 2011-09-22
2
Medium Priority
?
154 Views
Last Modified: 2012-06-11
Small school environment. At no time does a student login without domain credentials. But in lower grades, all the kids in Kindergarten share the same USERID, which is K1.  I want it so that USERID K1 can ONLY be used on the PC's in room K1, where a teacher is watching.  

My problem: Upper school students have unique USERIDs, but logon around the school as K1, to disguise their surfing behavior.

I need to make it so that K1 can only be used on the PC's in room K1, and K2 can only be used on the PC's in K2. I do NOT need to do the reverse, which would be to make the PC's in rooom K1 accept only K1 as a logon id.  

I'm not finding the GPO that would let me control this.  
0
Comment
Question by:bobzilla51
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 44

Accepted Solution

by:
Amit earned 750 total points
ID: 36582164
You can use Allow logon locally option in GPO.

http://support.microsoft.com/kb/247989

The user whom you want to login, add it to allow and for rest use deny option.
0
 

Author Comment

by:bobzilla51
ID: 36582229
If I'm reading this correctly, this doesn't do what I need.
I don't want anyone to logon locally. I need the Domain controller to assign permissions and shared resources, etc.
I just want K1 USERID restricted to a certain set of machines.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question