Re: Group Policy to apply only to one computer..with many users..
From: Scott Irwin (sirwin6161_at_yahoo.com)
Date: 02/05/04
- Next message: Steven L Umbach: "Re: Users cannot change passwords"
- Previous message: Chriss3: "Re: Group Policy Not take effective"
- In reply to: Chriss3: "Re: Group Policy to apply only to one computer..with many users.."
- Next in thread: Chriss3: "Re: Group Policy to apply only to one computer..with many users.."
- Reply: Chriss3: "Re: Group Policy to apply only to one computer..with many users.."
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 5 Feb 2004 09:19:21 -0800
Thanks Chris..
I already have a policy very similar to this... even more restrictive ...
however... wehn you drop a user under the hierarchy of this policy... it
locks them up in the entire domain... as the user object sits below the
GPO.. Do you know if the loopback processing mode only applies to a
computer running Terminal Services ?
My goal is to have an accounting user.. login from home to a TS machine..
get locked down... but not be locked down when the sit at thier computer...
the TS server and desktop are in the same AD Tree... I thought about
defining the TS in a different domain... with separate users.. that would
take care of it.. but its a huge pain in the @ss ..
Thanks for the help
"Chriss3" <noSpamHere@chrisse.se> wrote in message
news:uzySEc66DHA.3648@TK2MSFTNGP11.phx.gbl...
> Hi Scott, use the User Group Policy loopback processing mode...
>
> How to Lock Down a Windows 2000 Terminal Server Session:
> http://support.microsoft.com/default.aspx?scid=kb;en-us;278295
>
> --
> Regards,
>
> Christoffer Andersson
> No email replies please - reply in the newsgroup
> If the information was help full, you can let me know at:
> http://www.itsystem.se/employers.asp?ID=1
>
> "Scott Irwin" <sirwin6161@yahoo.com> skrev i meddelandet
> news:OSNmeR56DHA.1804@TK2MSFTNGP12.phx.gbl...
> > I need to setup GPO so that when a user logs into a Terminal Server from
> > home...they receive a fully locked down desktop...but when they log into
> > their local desktop.. that it does not lock up with group policy.
> >
> > I do not want to use Local Policy to lock the Terminal Server computer
> > down..but rather use GPO by group.
> >
> > We currently have it set by different department group...however.. it
> locks
> > the people up on their main workstation when they log in at work.
> >
> > any thoughts...
> >
> >
>
>
- Next message: Steven L Umbach: "Re: Users cannot change passwords"
- Previous message: Chriss3: "Re: Group Policy Not take effective"
- In reply to: Chriss3: "Re: Group Policy to apply only to one computer..with many users.."
- Next in thread: Chriss3: "Re: Group Policy to apply only to one computer..with many users.."
- Reply: Chriss3: "Re: Group Policy to apply only to one computer..with many users.."
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
