Re: Keeping a user account from accessing more than 1 website

Tech-Archive recommends: Fix windows errors by optimizing your registry

Thanks for the advice! I will see what else I can find, maybe the ISA
Server would be a better place to do this at.

Thanks,
Drew

"Kerry Brown" <kerry@xxxxxxxxxxxxxxxxxxx*a*m> wrote in message
news:uaYI71LqFHA.4088@xxxxxxxxxxxxxxxxxxxxxxx
> "Drew" <drew.laing@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:e1bfnVCqFHA.2776@xxxxxxxxxxxxxxxxxxxxxxx
>>I know the subject sounds funny, but here is what we are trying to do.
>>
>> We have setup a training lab where employees can come take training
>> classes that are in their field. This lab connects to our network, but
>> we have an issue. By policy, we cannot have generic logins for the
>> network, this is because of accountability issues. We also don't want to
>> have to buy CALS for all of the other users (who do not use the computers
>> in their regular work).
>>
>> Is it possible, using Active Directory, to limit a login to be allowed to
>> go to 1 website? This would give us back our accountability, since the
>> users cannot go anywhere but where they need to be. The training is to
>> be done using a website, and the website contains all needed info.
>>
>
> You could use group policy. Add the site to the trusted sites. Remove all
> other trusted sites. Set the security to only allow trusted sites. Not
> sure but you may have to use loopback processing to do this. Another
> solution would be a proxy server that only served that site. Separate DNS
> server, altered host file, etc. Group policy is probably the best as the
> only investment would be the time to figure it out.
>
> Kerry
>
>


.

Relevant Pages

  • Re: Windows 2003 security issue
    ... is there might be more than one Group Policy managing those settings and it ... might help running rsop.msc on your TS server to see what Group Policies are ... is it because of that particular file or website that I ... As it is, I can't download from any site, even ...
    (microsoft.public.windows.server.security)
  • Re: IE7 Trusted Sites Disabled
    ... OK, forgetting Group Policy for a moment, if you go to Internet Explorer on the server and go to the Security tab, Trusted Sites, is it greyed out? ... Security -> Security Zones and Content Rating ... I go into Trusted Sites and and I cannot add sites, the buttons are greyed out to add new sites. ...
    (microsoft.public.windows.server.general)
  • Re: Keeping a user account from accessing more than 1 website
    ... > We have setup a training lab where employees can come take training ... > done using a website, and the website contains all needed info. ... You could use group policy. ... Add the site to the trusted sites. ...
    (microsoft.public.windows.server.active_directory)
  • External Access to IIS via Kerberos Authentication
    ... "iisweb.domain.com" and "iisweb" as its headers. ... This website is using "a share located on another computer" as its ... The server has been trusted for delegation. ... to add "iisweb.domain.com" to my list of Trusted sites. ...
    (microsoft.public.inetserver.iis.security)
  • Re: IE7 Trusted Sites Disabled
    ... Group Policy on 2008 Server ... Security -> Security Zones and Content Rating ... I go into Trusted Sites and and I cannot add sites, ... What do you mean by "it is greyed out in group policy on the 2008 server"? ...
    (microsoft.public.windows.server.general)