|
Posted by S. Pidgorny on August 14, 2006, 6:55 am
If you were Registered and logged in, you could reply and use other advanced thread options
Add the group containing to the "Deny log on locally" policy on the domain
level?
--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-
>I was wondering if anybody knew of a way to disable interactive logon
> privilages against specific OU/User Groups rather than against computers?
>
> Essentially I want to be able to provide domain accounts to users to
> access
> a web app published on the WAN but prevent them from accessing the domain
> via
> any of our computers/interactive logon.
>
> Any help or advice would be much appreciated.
>
> --
> Regards,
> Sam Gaw
>
> http://www.samgaw.co.uk
| 
XML site map