Re: how to forbid users to connect directly to printers
- From: a <b@xxx>
- Date: Tue, 23 Oct 2007 20:01:35 -0700
"Lanwench [MVP - Exchange]"
<lanwench@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
news:ekAGNMYFIHA.1324@xxxxxxxxxxxxxxxxxxxx:
Yann <Yann@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
Lanwench, I totally agree with you... unfortunately it's too late,
they have already been granted local admin rights, that's why they
can use printers without using the server. But the suggestion was
good.
Thanks
OK, but that doesn't really explain why you you can't *revoke* the
rights. Talk tothe business owners about the dangers of granting users
permissions they don't actually require - they can get infested with
very damaging malware, viruses, can deliberately or inadvertently make
changes to the operating system & network, install illegal software
(for which the company is likely liable), etc.
"Lanwench [MVP - Exchange]" wrote:
Perhaps this is a silly suggestion, but if you don't give users
local admin or power user rights, they won't be *able* to do this
(can't add local printers or printer ports at all).
I may be jumping into this a bit late - can't see the beginning of this
thread - but many network connected printers have internal settings to
limit the IP numbers that they will accept connections from. You could
set this to only allow access from the server. Turn off unused protocols
like Appletalk/IPP/FTP printing... Another way is if the printer can do
DLC protocol, you can set it to only do this, and have the server connect
using DLC - there is often a setting to make it exclusive so that once a
connection is made, it is not released when the print job is done so that
another computer can connect (the server just has to get there first for
this to work).
Or, if you have control over the network and have the right type of
switches so that you can create a VLAN that only the printer and server
are in, other machines could not see the printer.
.
- Follow-Ups:
- Re: how to forbid users to connect directly to printers
- From: Lanwench [MVP - Exchange]
- Re: how to forbid users to connect directly to printers
- References:
- Re: how to forbid users to connect directly to printers
- From: Lanwench [MVP - Exchange]
- Re: how to forbid users to connect directly to printers
- From: Lanwench [MVP - Exchange]
- Re: how to forbid users to connect directly to printers
- Prev by Date: RE: Access denied message while opening F: drive
- Next by Date: configuring multihomed server
- Previous by thread: Re: how to forbid users to connect directly to printers
- Next by thread: Re: how to forbid users to connect directly to printers
- Index(es):
Relevant Pages
|
