Solved

How to block XP Pro client machines from logging into Windows 2008 domain

Posted on 2014-03-31
3
570 Views
Last Modified: 2014-04-01
Hello
We support a clients Windows 2008 network - 60-70 users. We have upgraded all of their current client machines to Window 7 x64. With XP support expiring shortly we would like to be able to block XP client machines from logging into the network. Some of the users are reconnecting old workstations/laptops to the network and we wish to block this activity.
Is there a Windows 2008 group policy that will allow a minimum client OS to be enforced?

Many thanks in advance.
0
Comment
Question by:wsmyth
3 Comments
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 39968278
i would remove or disable the computer accounts in AD
0
 
LVL 21

Expert Comment

by:dan_blagut
ID: 39968480
hello

Using powershel you can have a list of all windows XP computers in the domain
Get-ADComputer -Filter {OperatingSystem -Like "Windows Server*"} -Property * | Format-Table Name,OperatingSystem,OperatingSystemServicePack -Wrap -Auto| out-file c:\temp\complist.txt.
Dont forget to load AD module before
import-module ActiveDirectory

but the most perfect solution is that one:
http://technet.microsoft.com/library/dd314175(WS.10).aspx
Dan
0
 
LVL 24

Accepted Solution

by:
lionelmm earned 500 total points
ID: 39969147
If you use a domain logon file you can add this to it
ver | find "5.1"
if %ERRORLEVEL% == 0 goto xp
GoTo End

:XP
shutdown -f -r -t 10 -c "Windows XP PCs are not allowed to logon to this domain"
GoTo End
:end
This will check to see what version of Windows they are running--if it is XP it will reboot there PC (the -r). If you want to shutdown their PC you can use -s instead.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SCCM 2012 Report 8 130
Citrix, Terminal Services, vmWare? 8 89
Can’t delete Windows.old in Windows 10 11 85
Windows 2012 R2 Server -- SERIVCES checklist ? 4 99
Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
The password reset disk is often mentioned as the best solution to deal with the lost Windows password problem. In Windows 2008, 7, Vista and XP, a password reset disk can be easily created. But besides Windows 7/Vista/XP, Windows Server 2008 and ot…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now