?
Solved

Group Policy to lock specific idle computers

Posted on 2014-03-06
4
Medium Priority
?
552 Views
Last Modified: 2014-04-07
How do I create a group policy that would lock several specific idle computers
0
Comment
Question by:exhuser
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 38

Expert Comment

by:Mahesh
ID: 39911605
Just follow PDF file in below article to achieve this

http://gallery.technet.microsoft.com/Lock-Computers-In-Domain-b7f03800

The file speaks itself instead of typing every thing here

Note: same settings can be applied to workgroup computers also with local group policy editor (gpedit.msc) to get them locked after certain period of inactivity

Mahesh
0
 
LVL 4

Assisted Solution

by:michaelalphi
michaelalphi earned 750 total points
ID: 39911638
Hi,
You can do this by following below steps :

1. Create a GPO for screen saver
2. Expand Policies -> Administrative Templates -> Control Panel -> Personalization
3. Enable screen saver
4. Screen saver executable name - scrnsave.scr
5. Enable password protect the screen saver, prevent changing the screensaver, and screen saver timeout 180 seconds
6. Then link it to your domain.
Please check this to gather more info : http://prajwaldesai.com/lock-computers-in-domain-via-group-policy/
0
 

Author Comment

by:exhuser
ID: 39912838
I don't want this to apply to all computers in the domain -- just several workstations.
0
 
LVL 38

Accepted Solution

by:
Mahesh earned 750 total points
ID: 39913234
Create one global security group and add required computers to that group

You can apply your new policy to domain level

In GPMC click new GPO and select scope tab at right hand side and in security filtering, remove authenticated users and add above security group there

Now GPO will apply to only those computers in security group

Mahesh
0

Featured Post

Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question