Hi all,
I am currently using a Win2K Adv Server to deploy a single application to a user group - through Terminal Services.
The problem is, I am running this server in an NT4 domain. Everything is working perfectly, except my attempts to secure/customise the NT Shell (Desktop, Start Menu, etc).
I know that in an Active Directory domain, you can use 'Active Directory Users and Computers' or the Local Computer Policy snap-in in MMC to set up general policy restrictions for the whole PC. But how can I get this policy to apply only for a specific global group from my NT4 SAM?
Also, the restrictions I apply are only supposed to pertain to users connecting to this particular server, using the RDP client. The last time I applied the restrictions using the Local Computer Policy snap-in, I found that the restrictions also applied when I logged in locally using my admin account!
Lastly, I've also tried using 'poledit' to set up custom shortcuts on the desktop, etc, and I find this works with the desktop, but not the Start Menu - where users can still get on and reconfigure all kinds of stuff (if they want to)!
Please help! What am I doing wrong?
Thank-you,
Marti
I am currently using a Win2K Adv Server to deploy a single application to a user group - through Terminal Services.
The problem is, I am running this server in an NT4 domain. Everything is working perfectly, except my attempts to secure/customise the NT Shell (Desktop, Start Menu, etc).
I know that in an Active Directory domain, you can use 'Active Directory Users and Computers' or the Local Computer Policy snap-in in MMC to set up general policy restrictions for the whole PC. But how can I get this policy to apply only for a specific global group from my NT4 SAM?
Also, the restrictions I apply are only supposed to pertain to users connecting to this particular server, using the RDP client. The last time I applied the restrictions using the Local Computer Policy snap-in, I found that the restrictions also applied when I logged in locally using my admin account!
Lastly, I've also tried using 'poledit' to set up custom shortcuts on the desktop, etc, and I find this works with the desktop, but not the Start Menu - where users can still get on and reconfigure all kinds of stuff (if they want to)!
Please help! What am I doing wrong?
Thank-you,
Marti
