Advice on creating security settings using GPO’s

Home Forums Server Operating Systems Windows Server 2000 / 2003 / 2003 R2 Advice on creating security settings using GPO’s

Viewing 1 post (of 1 total)
  • Author
    Posts
  • Avatar
    nickc1976
    Member
    #142761

    Hi I am setting up group policies for our domain (windows 2003).
    I am looking at the policies in this location:

    Computer ConfigurationWindows SettingsSecurity SettingsLocal PoliciesUser Rights Assignment

    Specifically these two:
    Deny access to this computer from the network
    Access this computer from the network

    I want to prevent all domain users from having access to other PC’s in the LAN.
    Next, I want to allow certain users to access PC’s in the network using Remote Desktop and VNC, from within the LAN and also when they connect using VPN.
    I also want to allow users access to certain machines directly using [URL=”file://\computernamec$”]\computernamec$[/URL]
    Some PC’s have shared printers installed, so they would need to be available.

    Is it possible to set this up by creating different groups, then adding them to the Deny access to this computer from the network and Access this computer from the network policies?

    I have read the warnings about changing the Access this computer from the network policy – would I be creating problems for myself by trying to create access rules in this location? or is there a better way to achieve this?

    Thanks

    Nick

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.