Solved

How to block XP Pro client machines from logging into Windows 2008 domain

Posted on 2014-03-31
3
560 Views
Last Modified: 2014-04-01
Hello
We support a clients Windows 2008 network - 60-70 users. We have upgraded all of their current client machines to Window 7 x64. With XP support expiring shortly we would like to be able to block XP client machines from logging into the network. Some of the users are reconnecting old workstations/laptops to the network and we wish to block this activity.
Is there a Windows 2008 group policy that will allow a minimum client OS to be enforced?

Many thanks in advance.
0
Comment
Question by:wsmyth
3 Comments
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 39968278
i would remove or disable the computer accounts in AD
0
 
LVL 21

Expert Comment

by:dan_blagut
ID: 39968480
hello

Using powershel you can have a list of all windows XP computers in the domain
Get-ADComputer -Filter {OperatingSystem -Like "Windows Server*"} -Property * | Format-Table Name,OperatingSystem,OperatingSystemServicePack -Wrap -Auto| out-file c:\temp\complist.txt.
Dont forget to load AD module before
import-module ActiveDirectory

but the most perfect solution is that one:
http://technet.microsoft.com/library/dd314175(WS.10).aspx
Dan
0
 
LVL 24

Accepted Solution

by:
lionelmm earned 500 total points
ID: 39969147
If you use a domain logon file you can add this to it
ver | find "5.1"
if %ERRORLEVEL% == 0 goto xp
GoTo End

:XP
shutdown -f -r -t 10 -c "Windows XP PCs are not allowed to logon to this domain"
GoTo End
:end
This will check to see what version of Windows they are running--if it is XP it will reboot there PC (the -r). If you want to shutdown their PC you can use -s instead.
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip is around source server preparation. No migration is an easy migration, there is a…
Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now