Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

server 2003  - Lock domain PCs after a set time.

Posted on 2013-12-04
8
Medium Priority
?
431 Views
Last Modified: 2013-12-09
Hi,

My domain server is 2003 and my clients are XP.

I want to lock the the PC after a set amount of inactivity. So say, after 10 mins of inactivity  the computer would lock and require the user to re-insert their password. I wanted the users to manually lock their PCs if they left their PC, but this did not happen, so therefore I need to sort something at the back end.

Would group policy the solution? if so can someone explain to a novice how to set this?
0
Comment
Question by:APC_40
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 6

Accepted Solution

by:
donnk earned 1332 total points
ID: 39696288
make a new GPO, link it to your PC's container and edit:

User Settings > Administrative Templates > Control Panel > Personalization > Screen saver timeout and Password protect the screen saver
0
 

Author Comment

by:APC_40
ID: 39696331
Sorry, i don't think i was entirely clear, I only want control- ald -delete to appear and for the user to have to manually unlock the PC after say 30 mins. I don't have any requirement for a screen saver.
0
 
LVL 6

Expert Comment

by:donnk
ID: 39696422
thats ok, screensaver = microsoft speak for lock da screen )
0
Introducing the WatchGuard 420 Access Point

WatchGuard's newest access point includes an 802.11ac Wave 2 chipset, providing the fastest speeds for VoIP, video and music streaming, and large data file transfers. Additionally, enjoy the benefits of strong security as the 3rd radio delivers dedicated WIPS protection!

 

Author Comment

by:APC_40
ID: 39696480
Thanks for clearing that up :)

So I'd so this from within AD rather from GPEDIT? Like this - Locate the computers OU and then add a new group policy object there as you described in your original post  and enforce it.
0
 
LVL 16

Assisted Solution

by:Dirk Mare
Dirk Mare earned 668 total points
ID: 39696491
Click "Start." Type "Gpedit.msc" into the search box at the bottom of the Start menu. Press "Enter."

Click "Yes" in the User Account Control prompt window, if one appears.

Navigate to the "User Configuration\Administrative Templates\Control Panel\Personalization" folder in the left pane of the Group Policy window.

Double-click the "Password Protect the Screen Saver" setting in the right pane of the Group Policy Editor window.

Click "Enabled." Click "OK."

Double-click the "Screen Saver Timeout" setting in the right pane.

Click "Enabled."

Type the number of seconds you want to lock the PC after into the "Seconds" box. For example, type "600" if you want to lock the PC after 10 minutes.

Click "OK."
0
 
LVL 6

Assisted Solution

by:donnk
donnk earned 1332 total points
ID: 39696610
1. Make a GPO per my post using group policy manager.

2. Link this GPO to either the whole domain or the specific container containing the computers you want it applied to .
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39699997
APC_40,  just as a F.Y.I, Microsoft OS's are not mainframe operating systems so please don't add mainframe operating systems to anything dealing with Windows OS's.
0
 

Author Closing Comment

by:APC_40
ID: 39706197
Excellent thanks. GPO created and linked to an OU
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

With the rising number of cyber attacks in recent years, keeping your personal data safe has become more important than ever. The tips outlined in this article will help you keep your identitfy safe.
A look at what happened in the Verizon cloud breach.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question