troubleshooting Question

AD User permissions across multiple sites

Avatar of JBrIT
JBrITFlag for United Kingdom of Great Britain and Northern Ireland asked on
Active DirectoryWindows Server 2008Windows 7
4 Comments1 Solution396 ViewsLast Modified:
It's good to be back on this site!

I've been administering multiple users who move across multiple sites. The time has come for some security lockdowns.

How, within AD, GPO's etc. can I perform, for example, the following: (its more the method I need).

We have:
Site 1 and Site 2
Computer 1 and Computer 2
User A and User B

Assuming Computers 1 and 2 are different machines at each site, so 4 machines in total. Users move between physical sites.

On Site 1, User A is permitted CD-Rom drive access on Computer 1 but not computer 2, User B isn't permitted CD-Rom drive access on any computer on Site 1.

On Site 2, User A needs to be denied CD-Rom drive access on Computer 1 and Computer 2 but User B needs access to CD-Rom drives on both PC 1 and 2.

What's the best way to implement Group Policy to get through this minefield of permissions please?
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 4 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 4 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros