GPO's

[jgolde00]

I have had problems with users given out there username and password to other users so they can surf the internet among other things. Even though the management is not doing much about it I would like to. The other problem is a lot of these users roam to different PC’s so I can’t allow them to only log onto specified PC’s only.

Is there a GPO that will only allow a user name to be logged into one PC at a time?

Thanks in advance

 

[mrdenny]

No there isn't a GPO that restricts a person to a single computer.

The only thing I can think of to discourage this would be to force people to change there passwords more often. But this comes with it's own set of issues.

I would recommend that the next person you catch doing it, have HR publically and loudly fire them for violating your network security policy. That should get everyones attention.

Denny
MCSA (2003) / MCDBA (SQL 2000)

--Anything is possible. All it takes is a little research. (Me)

http://www.mrdenny.com

(My very old site)

 

[jgolde00]

I had a bad feeling that would be the case, well let me see if I can get HR to talk to them.

Thanks

 

[mrdenny]

Sorry. Sometimes bad news is the only news.


Denny
MCSA (2003) / MCDBA (SQL 2000)

--Anything is possible. All it takes is a little research. (Me)

http://www.mrdenny.com

(My very old site)

 

[mlichstein]

You can restrict users to computers by going into the properties of their account in AD.

Look on the account tab, log on to button.