Solved

How to block XP Pro client machines from logging into Windows 2008 domain

Posted on 2014-03-31
3
630 Views
Last Modified: 2014-04-01
Hello
We support a clients Windows 2008 network - 60-70 users. We have upgraded all of their current client machines to Window 7 x64. With XP support expiring shortly we would like to be able to block XP client machines from logging into the network. Some of the users are reconnecting old workstations/laptops to the network and we wish to block this activity.
Is there a Windows 2008 group policy that will allow a minimum client OS to be enforced?

Many thanks in advance.
0
Comment
Question by:wsmyth
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 35

Expert Comment

by:Seth Simmons
ID: 39968278
i would remove or disable the computer accounts in AD
0
 
LVL 22

Expert Comment

by:dan_blagut
ID: 39968480
hello

Using powershel you can have a list of all windows XP computers in the domain
Get-ADComputer -Filter {OperatingSystem -Like "Windows Server*"} -Property * | Format-Table Name,OperatingSystem,OperatingSystemServicePack -Wrap -Auto| out-file c:\temp\complist.txt.
Dont forget to load AD module before
import-module ActiveDirectory

but the most perfect solution is that one:
http://technet.microsoft.com/library/dd314175(WS.10).aspx
Dan
0
 
LVL 25

Accepted Solution

by:
Lionel MM earned 500 total points
ID: 39969147
If you use a domain logon file you can add this to it
ver | find "5.1"
if %ERRORLEVEL% == 0 goto xp
GoTo End

:XP
shutdown -f -r -t 10 -c "Windows XP PCs are not allowed to logon to this domain"
GoTo End
:end
This will check to see what version of Windows they are running--if it is XP it will reboot there PC (the -r). If you want to shutdown their PC you can use -s instead.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Remote Apps is a feature in server 2008 which allows users to run applications off Remote Desktop Servers without having to log into them to run the applications.  The user can either have a desktop shortcut installed or go through the web portal to…
Know what services you can and cannot, should and should not combine on your server.
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question