I have a customer who has requested that we create a domain guest account. This account is to have access to just ONE website (which should load upon default). The same user account must not be able to access any resources either on the network or the local machine that (s)he logs in to.
This account should be able to log on to any domain attached computer.
All machines have IE on them some have additional browsers, so I need to ensure that this one URL is the only one available to this one user regardless of browser being used.
The domain is 2012 based, and there is a hardware based firewall (Watchguard XTM515) in place which is configured to restrict / allow internet access based on IP address - not on users.