I administer a site where most users run sessions on one of 3, 64 bit W2008 Terminal servers. The site has a domain and each user their own AD account.
Management have requested that I block internet access for a some users, for IE, Chrome, Firefox and any other browsers they may be able to install. (User are NOT local admins, however, a few browsers, including Chrome allow a dodgy non-admin install.) The previous admin had written a GPO to misconfigure the browser proxy, but it does not work with newer versions on IE, and of course does nothing for 3rd party browsers.
Does anyone have any idea how this can be done? It would be easy on individual workstations, but this being terminal server sessions, I can't figure out how to get it happening.