Link to home
Create AccountLog in
Avatar of kurajesh
kurajesh

asked on

windows 2012 group policy

i have 2012 DC and users are logging to this DC, all are using laptops. no one has got admin rights. they are allowed to access only few webistes inside office and this policy is set in firewall. i need to setup a group policy in DC or local PC in such a way that whenver they connect to outside office network they should access only the same websites.

how do i achieve this. at the same everyone must be able to connect to wireless or wired network.
SOLUTION
Avatar of dhoffman_98
dhoffman_98
Flag of United States of America image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
Avatar of kurajesh
kurajesh

ASKER

the firewall presently is a sonicwall which is inside the network.

in that case can we set a local policy in the workstation itself
I don't know of a policy that you can set on the workstation, that would be enforced while the user is off the network that would restrict what websites they could go to.
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
That would work just fine for when the laptop is on the LAN, but the question is about how to restrict access to only specific web sites when a user takes their laptop outside the office and connects to a different network.
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
If the proxy is on the internal network then how is the laptop supposed to connect to it?

Sure the user will be restricted as to what they can change, but you are setting the proxy configuration so that it forces connections to route through the proxy.

The proxy won't be available to the user if they are out of the office.
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
That is adding a lot of extra complexity and management overhead... and most likely cost as well.

Perhaps we should be going back to the original author and asking the simplest question... why do you want to restrict people to going to only a limited list of web sites, even when they are off your network?
thanks for the posts, basically this is for an accounting audit firm where users visit other companies for auditing, hence they must be allowed to access the same websites which they are allowed to access same like internal network
ASKER CERTIFIED SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.