Re: Locking down a TS
- From: Jon Wallace <jon.wallace@*nojunk*.appsense.com>
- Date: Tue, 24 Jan 2006 11:57:47 -0500
Not a problem - yes it is really as easy as that - add the group of uses who you don't want the policy to apply to to the ACL of the group policy object and deny them apply. When members of that group login they will not apply the policy.
This URL (although based on Windows 2003) is still relevant to what you want to achieve - it's Microsoft's step-by-step:
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/directory/activedirectory/stepbystep/gpfeat.mspx
Open the page and do a search for the section "To deny GPO application to members of the Management group"
Hope this helps you
Best Regards
Jon Wallace AppSense - http://www.appsense.com
-----
MLL wrote:
Jon:
I have read several articles on loop back processing, and it looks like this is exactly what I need in this situation.
Could you expound on denying the application of the policy to the relavant groups? Is this as simple as adding the group in the security tab of the GPO and checking the "deny" box next to the "apply group policy" permission? If you known of any documantation on this procedure, that would br great to have as well.
Thanks again,
.
- References:
- Re: Locking down a TS
- From: Jon Wallace
- Re: Locking down a TS
- Prev by Date: Re: Terminal Services - Force Drive Redirection
- Next by Date: Re: Delete Temp Files For All Profiles
- Previous by thread: Re: Locking down a TS
- Next by thread: Re: WEB ACCESS TO TS
- Index(es):
Relevant Pages
|
