Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Locking down desktops with Server 2000

Status
Not open for further replies.
tekkid

tekkid

Technical User
Dec 28, 2001
50
US
Hey folks,

I am wanting to lockdown desktops using Server 2000 and group policies. I have read about this before but do not know enough about it to complete my task. I was hoping that some of you might have some helpful info and/or know of some documentation that clearly defines these steps. Here is my project info :


I have Server 2k installed with AD-

User (A) will have access to the local desktops ( email,MS office, etc. ),including Citrix to access the terminal servers.

User (B) will only have access to Citrix with one icon on the desktop that will connect them to the terminal servers where they will access mail, office, etc. and no items in programs or the start menu but log off/ shut down.


I want to set up policies for both users from the 2k Server with AD and push these policies across the network to the machines. Is this possible? where do I start?

Thank you in advance...

kidd
 
Sort by date Sort by votes
Thanks mattwray for the responce.

Actually, I'm wanting to setup policies from the Server to push out to each computer on the network. In otherwords, I want to have a policy to remove certain icons from some machines. Other machines I want to allow access to certain icons, etc.

I want to have the ability to edit what icons the user has on his or her machine and manage that from the server through group policies in AD.

Hope that makes sense.

Thanks,

Kidd
 
Upvote 0 Downvote
The first thing you have to do is create OU's for the 2 different kinds of users. Then you can look in the GPO snap-in under User Config-> Admin Templates, Start Menu and Desktop for the removal of Icons.

I don't think there will be enough options though. I think you will have to create your default profile for User (A). Then create a default profile for User (B). Store the 2 profiles on a server and point the correct user profiles to the correct directory within AD Users and Computers...



Thanks,

Matt Wray
MCSE, MCSA, MCP, CCNA

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MaioMaio
  • Locked
  • Question
Server Remote Desktop License
Replies
0
Views
210
MaioMaio
MaioMaio
Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
259
Aquiles Vidal
Aquiles Vidal
ravalos
  • Locked
  • Question
Problem with PDFs in IIS
Replies
1
Views
467
gbaughma
gbaughma
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
270
DrB0b
DrB0b
rzammit82
  • Locked
  • Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
307
suncit
suncit

Part and Inventory Search

Sponsor

Back
Top