User access under Windows 2000
-
We distribute PCs on around the factory and I want to be able to prevent users from installing games, screensavers etc. on Win2k pro systems. I have checked all the local security policy edits etc. but haven't found anything. Any help would be apprecitated. Elaine (fluffy tigress emoticon) The tigress is here :-D
-
We distribute PCs on around the factory and I want to be able to prevent users from installing games, screensavers etc. on Win2k pro systems. I have checked all the local security policy edits etc. but haven't found anything. Any help would be apprecitated. Elaine (fluffy tigress emoticon) The tigress is here :-D
Give them normal user accounts, that way they can't install (or break) anything. Or is that too restrictive for your needs? --Mike-- I'm bored... Episode I bored. 1ClickPicGrabber - Grab & organize pictures from your favorite web pages, with 1 click! My really out-of-date homepage Sonork-100.19012 Acid_Helm
-
Give them normal user accounts, that way they can't install (or break) anything. Or is that too restrictive for your needs? --Mike-- I'm bored... Episode I bored. 1ClickPicGrabber - Grab & organize pictures from your favorite web pages, with 1 click! My really out-of-date homepage Sonork-100.19012 Acid_Helm
Actually, its not restricive enough ! I need to lock down the desktop and prevent them from messing about with files too :wtf: These are in test sets the are meant to run one application and nothing else as far as the operator is concerned. Elaine The tigress is here :-D
-
Actually, its not restricive enough ! I need to lock down the desktop and prevent them from messing about with files too :wtf: These are in test sets the are meant to run one application and nothing else as far as the operator is concerned. Elaine The tigress is here :-D
Have you looked in the Group Policy editor? Start->Run->gpedit.msc I know it has settings to only allow certain programs (by name) to be run. --Mike-- I'm bored... Episode I bored. 1ClickPicGrabber - Grab & organize pictures from your favorite web pages, with 1 click! My really out-of-date homepage Sonork-100.19012 Acid_Helm
-
Actually, its not restricive enough ! I need to lock down the desktop and prevent them from messing about with files too :wtf: These are in test sets the are meant to run one application and nothing else as far as the operator is concerned. Elaine The tigress is here :-D
Create a group - "Rocks" perhaps - and put your users in it. Limit the permissions on the group to just those capabilities your test operators (we called them 'factory rocks' at General Dynamics, hence the group name) actually need. Give the group access to only those files and folders they need to use to run the tests. To control the desktop, you can use a mandatory profile. I haven't had a need to do this, so I can't give you the step-by-step instructions, but it sounds simple. For each user, a folder is created in Documents and Settings. Adding the extension .MAN to the folder makes everything in it mandatory. The user can still make changes while logged on, but the mandatory settings will be restored on the next logon. If you have a number of users accessing the same machine, this could get tedious, and it might be simpler to create one generic profile for all users, then simply supply the path to it in the User Account properties page in the Profiles tab. Better yet, take away their keyboards and rodents and supply them with a single "go" button.:-D "How many times do I have to flush before you go away?" - Megan Forbes, on Management (12/5/2002)