Solved

How to block XP Pro client machines from logging into Windows 2008 domain

Posted on 2014-03-31
3
584 Views
Last Modified: 2014-04-01
Hello
We support a clients Windows 2008 network - 60-70 users. We have upgraded all of their current client machines to Window 7 x64. With XP support expiring shortly we would like to be able to block XP client machines from logging into the network. Some of the users are reconnecting old workstations/laptops to the network and we wish to block this activity.
Is there a Windows 2008 group policy that will allow a minimum client OS to be enforced?

Many thanks in advance.
0
Comment
Question by:wsmyth
3 Comments
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 39968278
i would remove or disable the computer accounts in AD
0
 
LVL 21

Expert Comment

by:dan_blagut
ID: 39968480
hello

Using powershel you can have a list of all windows XP computers in the domain
Get-ADComputer -Filter {OperatingSystem -Like "Windows Server*"} -Property * | Format-Table Name,OperatingSystem,OperatingSystemServicePack -Wrap -Auto| out-file c:\temp\complist.txt.
Dont forget to load AD module before
import-module ActiveDirectory

but the most perfect solution is that one:
http://technet.microsoft.com/library/dd314175(WS.10).aspx
Dan
0
 
LVL 24

Accepted Solution

by:
Lionel MM earned 500 total points
ID: 39969147
If you use a domain logon file you can add this to it
ver | find "5.1"
if %ERRORLEVEL% == 0 goto xp
GoTo End

:XP
shutdown -f -r -t 10 -c "Windows XP PCs are not allowed to logon to this domain"
GoTo End
:end
This will check to see what version of Windows they are running--if it is XP it will reboot there PC (the -r). If you want to shutdown their PC you can use -s instead.
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The password reset disk is often mentioned as the best solution to deal with the lost Windows password problem. In Windows 2008, 7, Vista and XP, a password reset disk can be easily created. But besides Windows 7/Vista/XP, Windows Server 2008 and ot…
When you upgrade from Windows 8 to 8.1 or to Windows 10 or if you are like me you are on the Insider Program you may find yourself with many 450MB recovery partitions.  With a traditional disk that may not be a problem but with relatively smaller SS…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question