mbkitmgr
asked on
Group Policy - App Restriction - By Device - By User
I have a situation.
We want to block access to an application for users, but only when they log onto certain Terminals
At my site the users will be running their desktops via Remote Desktop, either accessing it from PC's or Thin Clients.
I need to prevent a program from being run when any user logs onto one of 4 thin clients in particular for security reasons. If that user logs onto any other machine they need to be able to run the app.
We want to block access to an application for users, but only when they log onto certain Terminals
At my site the users will be running their desktops via Remote Desktop, either accessing it from PC's or Thin Clients.
I need to prevent a program from being run when any user logs onto one of 4 thin clients in particular for security reasons. If that user logs onto any other machine they need to be able to run the app.
Have a look at below link too:
Restrict applications to certain users:http://social.technet.microsoft.com/Forums/windowsserver/en-US/ca63fb02-5821-4866-ae88-c79de8aeed90/restrict-applications-to-certain-users
http://www.informit.com/articles/article.aspx?p=366893&seqNum=7
Restrict applications to certain users:http://social.technet.microsoft.com/Forums/windowsserver/en-US/ca63fb02-5821-4866-ae88-c79de8aeed90/restrict-applications-to-certain-users
http://www.informit.com/articles/article.aspx?p=366893&seqNum=7
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Self Resolved
The GPO will be:
Computer configuration > Windows Settings > Security Settings > Software restrictions Policies > Additional Rules
Right click and choose NEW HASH RULE
Then choose the path to the EXE of the program you want to block and choose NOT ALLOWED.
Apply this GPO to the 4 computers.