Re: Organizaional Unit Policy
- From: "Cary Shultz [A.D. MVP]" <cwshultz@xxxxxxxx>
- Date: Thu, 6 Oct 2005 00:51:59 -0400
Karan,
As suggested, you would use the Logon Locally ( specifically, you would deny
this ).
I am not sure why you would want IT to not be able to log on to any computer
in the company. I guess you have a good reason. It would make things a bit
more difficult for solving any problems. If the problem is an 'HR' issue
rather than a 'technical' issue - such as you can not trust some of the
people in IT ( are you part of 'IT'? ) then the solution should be a clear
one....
Does this help you?
--
Cary W. Shultz
Roanoke, VA 24012
WIN2000 Active Directory MVP
http://www.activedirectory-win2000.com
(soon to be updated!!!)
http://www.grouppolicy-win2000.com
(soon to be updated!!!)
"Karan" <Karan@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:987CA76E-BB96-4BE3-B779-4ADC75171CAF@xxxxxxxxxxxxxxxx
> In my Domain I have created Organizational Units.
> Now I want to apply a policy so that the OU users can not access the
> resources of other OU in the same Domain.
>
> Suppose I have two OU's
> IT and Sales
> Now I want to restrict users of Sales OU from accessing the computers of
> IT
> OU and vice versa.
> Please let me know if you know.
.
- Prev by Date: Re: security log errors
- Next by Date: Re: 2003 server file rights
- Previous by thread: Re: security log errors
- Next by thread: Re: Time Server for the domain
- Index(es):
