On specific computers, we'd like to override a domain-wide policy that disallows C: access by user. Possible?

We have most of users' ability to access the C: blocked. We have a specific application that requires C: drive access so we wanted to allow that access but only on specific computers. What are some recommendations to override this User Policy to disallow C: access on specific computers?
achapman5Asked:
Who is Participating?
 
Mike KlineConnect With a Mentor Commented:
Not going to be pretty but on those machines enable loopback processing then have a user policy applied that allows access

More on loopback here

http://www.sdmsoftware.com/general-stuff/please-explain-loopback-processing/

Thanks

Mike
0
 
vmaganConnect With a Mentor Commented:
Mkline is correct. The loopback policy will take the user gpo settings and apply it to the machine that user is working on. So if they have access to view the C: drive it will override.

Best way to get it done.
0
 
achapman5Author Commented:
Thanks guys. I'll embark on this and respond with my successes/failures.
0
 
McKnifeCommented:
Hi achapman5.

Could you specify what type of access you blocked (and why) and what type of access these users will need? Because I wonder what you tried to achieve by blocking "access" in the first place. If you simply denied write access it should be obvious how to undo that. If however you hid the drive from display in windows explorer, it's no real protection.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.