Group Policy to lock specific idle computers

How do I create a group policy that would lock several specific idle computers
exhuserAsked:
Who is Participating?
 
MaheshArchitectCommented:
Create one global security group and add required computers to that group

You can apply your new policy to domain level

In GPMC click new GPO and select scope tab at right hand side and in security filtering, remove authenticated users and add above security group there

Now GPO will apply to only those computers in security group

Mahesh
0
 
MaheshArchitectCommented:
Just follow PDF file in below article to achieve this

http://gallery.technet.microsoft.com/Lock-Computers-In-Domain-b7f03800

The file speaks itself instead of typing every thing here

Note: same settings can be applied to workgroup computers also with local group policy editor (gpedit.msc) to get them locked after certain period of inactivity

Mahesh
0
 
michaelalphiCommented:
Hi,
You can do this by following below steps :

1. Create a GPO for screen saver
2. Expand Policies -> Administrative Templates -> Control Panel -> Personalization
3. Enable screen saver
4. Screen saver executable name - scrnsave.scr
5. Enable password protect the screen saver, prevent changing the screensaver, and screen saver timeout 180 seconds
6. Then link it to your domain.
Please check this to gather more info : http://prajwaldesai.com/lock-computers-in-domain-via-group-policy/
0
 
exhuserAuthor Commented:
I don't want this to apply to all computers in the domain -- just several workstations.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.