We have Terminal Server 2003 with GPP CSE and Microsoft Office installed.
The goal is to prevent users in certain OU from using Microsoft Office applications. When these users open MS Office document, it should use Viewer (Word, Excel and PowerPoint) instead.
User Configuration -> Preferences -> Control Panel Settings -> Folder Options all Office extensions configured to run Viewer.
When user runs Office docs from Windows Explorer it works as designed – opens Viewers, but if the same user opens documents from Internet Explorer, for example attachment in OWA or if he/she simply drag-n-drop a doc to IE window and click ‘Open’, instead of Viewer fully functional MS Office application opens that file.
The question is how using only User’s group policies force IE to open Viewers?